Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2026-32281 (GCVE-0-2026-32281)
Vulnerability from cvelistv5 – Published: 2026-04-08 01:06 – Updated: 2026-04-13 18:19- CWE-407 - Inefficient Algorithmic Complexity
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | crypto/x509 |
Affected:
0 , < 1.25.9
(semver)
Affected: 1.26.0-0 , < 1.26.2 (semver) |
{
"containers": {
"adp": [
{
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2026-32281",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2026-04-13T17:52:37.734298Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2026-04-13T18:19:44.779Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "crypto/x509",
"product": "crypto/x509",
"programRoutines": [
{
"name": "policiesValid"
},
{
"name": "Certificate.Verify"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.25.9",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.26.2",
"status": "affected",
"version": "1.26.0-0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Jakub Ciolek - https://ciolek.dev"
}
],
"descriptions": [
{
"lang": "en",
"value": "Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-407: Inefficient Algorithmic Complexity",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-04-08T01:06:58.354Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/cl/758061"
},
{
"url": "https://go.dev/issue/78281"
},
{
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"title": "Inefficient policy validation in crypto/x509"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2026-32281",
"datePublished": "2026-04-08T01:06:58.354Z",
"dateReserved": "2026-03-11T16:38:46.556Z",
"dateUpdated": "2026-04-13T18:19:44.779Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2026-32281",
"date": "2026-07-13",
"epss": "0.00349",
"percentile": "0.27015"
},
"microsoft_vex": {
"current_release_date": "2026-06-23T14:43:31.000Z",
"cve": "CVE-2026-32281",
"id": "msrc_CVE-2026-32281",
"initial_release_date": "2026-04-02T00:00:00.000Z",
"product_status:known_affected": "7",
"product_status:known_not_affected": "8",
"source": "Microsoft CSAF VEX",
"status": "final",
"title": "Inefficient policy validation in crypto/x509",
"url": "https://msrc.microsoft.com/csaf/vex/2026/msrc_cve-2026-32281.json",
"version": "6"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2026-32281\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2026-04-08T02:16:03.350\",\"lastModified\":\"2026-06-17T10:35:28.980\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"crypto/x509\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"crypto/x509\",\"programRoutines\":[{\"name\":\"policiesValid\"},{\"name\":\"Certificate.Verify\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.25.9\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.26.0-0\",\"lessThan\":\"1.26.2\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2026-04-13T17:52:37.734298Z\",\"id\":\"CVE-2026-32281\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-295\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.25.9\",\"matchCriteriaId\":\"C6C9C072-9817-402D-877F-F83584B07017\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.26.0\",\"versionEndExcluding\":\"1.26.2\",\"matchCriteriaId\":\"39FE9BAF-55E9-43AA-B14E-239E7EF1D65D\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/758061\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/78281\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Release Notes\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2026-4946\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]}]}}",
"redhat_vex": {
"aggregate_severity": "Moderate",
"current_release_date": "2026-07-13T17:31:43+00:00",
"cve": "CVE-2026-32281",
"id": "CVE-2026-32281",
"initial_release_date": "2026-04-08T01:06:58.354000+00:00",
"product_status:fixed": "1123",
"product_status:known_affected": "261",
"product_status:known_not_affected": "1104",
"source": "Red Hat CSAF VEX",
"status": "final",
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"url": "https://security.access.redhat.com/data/csaf/v2/vex/2026/cve-2026-32281.json",
"version": "3"
},
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2026-32281\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-04-13T17:52:37.734298Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-04-13T17:52:33.394Z\"}}], \"cna\": {\"title\": \"Inefficient policy validation in crypto/x509\", \"credits\": [{\"lang\": \"en\", \"value\": \"Jakub Ciolek - https://ciolek.dev\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"crypto/x509\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.25.9\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.26.0-0\", \"lessThan\": \"1.26.2\", \"versionType\": \"semver\"}], \"packageName\": \"crypto/x509\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"policiesValid\"}, {\"name\": \"Certificate.Verify\"}]}], \"references\": [{\"url\": \"https://go.dev/cl/758061\"}, {\"url\": \"https://go.dev/issue/78281\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2026-4946\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Validating certificate chains which use policies is unexpectedly inefficient when certificates in the chain contain a very large number of policy mappings, possibly causing denial of service. This only affects validation of otherwise trusted certificate chains, issued by a root CA in the VerifyOptions.Roots CertPool, or in the system certificate pool.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-407: Inefficient Algorithmic Complexity\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2026-04-08T01:06:58.354Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2026-32281\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-04-13T18:19:44.779Z\", \"dateReserved\": \"2026-03-11T16:38:46.556Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2026-04-08T01:06:58.354Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2026:26080
Vulnerability from csaf_redhat - Published: 2026-06-15 22:39 - Updated: 2026-07-13 17:31A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x | — |
Vendor Fix
fix
|
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Kiali 2.4.18 for Red Hat OpenShift Service Mesh 3.0 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kiali 2.4.18, for Red Hat OpenShift Service Mesh 3.0, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently.\n\nSecurity Fix(es):\n\n* CVE-2026-32281 redhat-user-workloads/kiali-3-0: Go crypto/x509: Denial of Service via inefficient certificate chain validation (ossm-13867)\n\n* CVE-2026-9277 openshift-service-mesh/kiali-ossmc-rhel9: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators (ossm-13909)\n\n* CVE-2026-9277 openshift-service-mesh/kiali-rhel9: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators (ossm-13913)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26080",
"url": "https://access.redhat.com/errata/RHSA-2026:26080"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9277",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26080.json"
}
],
"title": "Red Hat Security Advisory: Kiali 2.4.18 for Red Hat OpenShift Service Mesh 3.0",
"tracking": {
"current_release_date": "2026-07-13T17:31:55+00:00",
"generator": {
"date": "2026-07-13T17:31:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26080",
"initial_release_date": "2026-06-15T22:39:05+00:00",
"revision_history": [
{
"date": "2026-06-15T22:39:05+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T08:56:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T17:31:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3",
"product": {
"name": "Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780916345"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780470245"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3Aa54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780916345"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780470245"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780916345"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Aac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780470245"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3Acf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780916345"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780470245"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64 as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x as a component of Red Hat OpenShift Service Mesh 3",
"product_id": "Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-9277",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-05-22T14:01:14.427751+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480741"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "RHBZ#2480741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480741"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9277",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote",
"url": "https://github.com/ljharb/shell-quote"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/commit/1518179",
"url": "https://github.com/ljharb/shell-quote/commit/1518179"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p",
"url": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/shell-quote",
"url": "https://www.npmjs.com/package/shell-quote"
}
],
"release_date": "2026-05-22T13:22:38.873000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-15T22:39:05+00:00",
"details": "See Kiali 2.4.18 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26080"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-15T22:39:05+00:00",
"details": "See Kiali 2.4.18 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26080"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:251fd9c3bfe135b9a7544c97c4169b36183a3b8c4c3b2255b772359f00e932e9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:2f171572c72f05b82da40f74fd25cf479d693afb24477e15478d2b602b86bd16_s390x",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:4b98893e9a829922e0444f70b0011d1a9c8af3a08d6e48f6c87d752657db1c68_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:ac654a09e840d2e4d47ed77a70d29d5ca01d8d3fa8e8905b90cda4e4a77813f1_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:10a6ac2eebe2fbab2a2ab538687774d227dec3c4b87f4b283ac7fa1510b87288_ppc64le",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:2e2cde16b866b764d4191d0024b07f8517ee390fff35b4af0109356da7646495_amd64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:a54f200ca82613a7c4a58b99e7f1b1dc1b0c9462e0a457f7c1c28a878ec8b8b9_arm64",
"Red Hat OpenShift Service Mesh 3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:cf6c0442d0aa7c3265a01f672723356aed640ad0a8ea4a197e106397e451fdb2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
}
]
}
RHSA-2026:26090
Vulnerability from csaf_redhat - Published: 2026-06-15 23:27 - Updated: 2026-07-13 17:31A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x | — | ||
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64 | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64 | — |
Workaround
|
A flaw was found in protobufjs, a library used to compile protobuf definitions into JavaScript functions. A remote attacker could exploit this vulnerability by providing a crafted descriptor that includes a non-string default value for a bytes field. This could lead to the generation of an unsafe expression within the toObject conversion function, ultimately allowing the attacker to execute arbitrary code.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Kiali 2.22.5 for Red Hat OpenShift Service Mesh 3.3 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Kiali 2.22.5, for Red Hat OpenShift Service Mesh 3.3, provides observability for the service mesh by offering a visual representation of the mesh topology and metrics, helping users monitor, trace, and manage efficiently.\n\nSecurity Fix(es):\n\n* CVE-2026-32281 Go crypto/x509: Denial of Service via inefficient certificate chain validation (OSSM-13870)\n\n* CVE-2026-9277 openshift-service-mesh/kiali-ossmc-rhel9: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators (ossm-13912)\n\n* CVE-2026-9277 openshift-service-mesh/kiali-rhel9: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators (ossm-13916)\n\n* CVE-2026-44293 openshift-service-mesh/kiali-rhel9: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors (ossm-13962)\n\n* CVE-2026-44293 openshift-service-mesh/kiali-ossmc-rhel9: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors (ossm-13963)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26090",
"url": "https://access.redhat.com/errata/RHSA-2026:26090"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44293",
"url": "https://access.redhat.com/security/cve/CVE-2026-44293"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9277",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26090.json"
}
],
"title": "Red Hat Security Advisory: Kiali 2.22.5 for Red Hat OpenShift Service Mesh 3.3",
"tracking": {
"current_release_date": "2026-07-13T17:31:55+00:00",
"generator": {
"date": "2026-07-13T17:31:55+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26090",
"initial_release_date": "2026-06-15T23:27:25+00:00",
"revision_history": [
{
"date": "2026-06-15T23:27:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-07-09T08:56:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T17:31:55+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.3",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.3::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780997438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-operator-bundle@sha256%3A2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-operator-bundle\u0026tag=1781006252"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9-operator@sha256%3Af739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator\u0026tag=1780997314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780997382"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3Ab424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780997438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9-operator@sha256%3Abe7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator\u0026tag=1780997314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780997382"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780997438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9-operator@sha256%3A8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator\u0026tag=1780997314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3A8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780997382"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9@sha256%3A20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9\u0026tag=1780997438"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel9-operator@sha256%3Ad1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator\u0026tag=1780997314"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-ossmc-rhel9@sha256%3Acb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9\u0026tag=1780997382"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64 as a component of Red Hat OpenShift Service Mesh 3.3",
"product_id": "Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-9277",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-05-22T14:01:14.427751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480741"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "RHBZ#2480741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480741"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9277",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote",
"url": "https://github.com/ljharb/shell-quote"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/commit/1518179",
"url": "https://github.com/ljharb/shell-quote/commit/1518179"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p",
"url": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/shell-quote",
"url": "https://www.npmjs.com/package/shell-quote"
}
],
"release_date": "2026-05-22T13:22:38.873000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-15T23:27:25+00:00",
"details": "See Kiali 2.22.4 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.3/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26090"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-15T23:27:25+00:00",
"details": "See Kiali 2.22.4 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.3/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-44293",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-05-13T16:03:50.961609+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477104"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in protobufjs, a library used to compile protobuf definitions into JavaScript functions. A remote attacker could exploit this vulnerability by providing a crafted descriptor that includes a non-string default value for a bytes field. This could lead to the generation of an unsafe expression within the toObject conversion function, ultimately allowing the attacker to execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobufjs: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw affecting Red Hat products that incorporate the protobufjs library. protobufjs is vulnerable to arbitrary code execution when compiling protobuf definitions into JavaScript. During generation of the toObject conversion function, a schema-controlled default value on a bytes field that is not a string can be emitted as unsafe JavaScript code. An attacker who can supply or influence the protobuf descriptor processed by the application (low privileges required) may achieve code execution in the Node.js process context. Fixed upstream in protobufjs 7.5.6 and 8.0.2. Affects Red Hat offerings that bundle protobufjs and process attacker-influenced protobuf schemas at runtime.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44293"
},
{
"category": "external",
"summary": "RHBZ#2477104",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477104"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44293",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44293"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44293",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44293"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-66ff-xgx4-vchm",
"url": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-66ff-xgx4-vchm"
}
],
"release_date": "2026-05-13T14:43:33.342000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-15T23:27:25+00:00",
"details": "See Kiali 2.22.4 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.3/html/observability/kiali-operator-provided-by-red-hat",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26090"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-operator-bundle@sha256:2daadecfbd74f5117f1f201422e40873c3e282d4cfa7f68120b6cf20c0a25df5_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:26bfd90af1d7fb3787511dea26d5ea1368f07b145f85758d708bfa108abaec65_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:8211925df422ecce0ba43f8aed2299cf3a2cc1b04c68be59972bfee210f5f094_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:9504542a9e097ed2f7a2729883db5be8bbc9c8a5f776797bb0f4e145aee70ea3_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-ossmc-rhel9@sha256:cb4859594eb70bdbafb57c6559ef63ba5ad5f75661cf0863fe6f1c3e287326da_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:8450f54ec40626dccf2d7e31ff964fbfd9cb603b208f50e640e72933d568ef3e_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:be7aa341e43aed513489afd74dca73bd8470a9f49514792a74715bd198f6cb1d_arm64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:d1f1ee9cc09c530e5e795e2e7ababbc3c9b6b6c1412944a73537c1a7d5cdea76_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9-operator@sha256:f739d6238e0822edb906a9b21cab46e47799daa0ac4be96b6678de52a9ecc0a2_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:0dbf34fe3dfa3ad05d3b4f0b31c6df5af681b6861dce5f1d5afda55172d624ef_amd64",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:20b191658314a61ccce8d4fd355f00c53e3899bb3d59eae1474105c012ddff8d_s390x",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:78d18c9e3add33c1d107c362ed7b5f8fd7662b69ae8b53ec2010584c25738746_ppc64le",
"Red Hat OpenShift Service Mesh 3.3:registry.redhat.io/openshift-service-mesh/kiali-rhel9@sha256:b424872f6a729439b1e01bc874496b91b9eedd9241186f2259592a0e4a215614_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "protobufjs: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors"
}
]
}
RHSA-2026:26234
Vulnerability from csaf_redhat - Published: 2026-06-16 09:33 - Updated: 2026-07-13 17:39A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by providing a specially crafted Uniform Resource Locator (URL) containing percent-encoded path separators and dot segments. Due to incorrect processing, fast-uri would decode these elements before proper normalization, leading to distinct URLs resolving to the same internal path. This could allow an attacker to bypass security policies that rely on path-based comparisons, potentially gaining unauthorized access to resources.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI's intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
A flaw was found in protobufjs, a JavaScript (JS) library used for compiling protobuf definitions. A remote attacker with low privileges can exploit this vulnerability by injecting arbitrary code into the "type" fields of protobuf definitions. This malicious code will then execute during the object decoding process, leading to arbitrary code execution and potentially full system compromise.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in xmldom and @xmldom/xmldom, a JavaScript module for parsing and serializing XML. This vulnerability allows an attacker to inject malicious content into XML comments. By doing so, the attacker can prematurely close a comment and insert unauthorized XML elements into the final output. This could lead to the manipulation of data within the XML document.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in the `xmldom` library, a JavaScript module for parsing XML documents. An attacker could exploit this vulnerability by providing a specially crafted, deeply nested XML document. This could lead to a Denial of Service (DoS) by causing the application to crash due to excessive recursion.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in xmldom and @xmldom/xmldom, a JavaScript library for parsing and serializing XML. This vulnerability allows an attacker to inject arbitrary XML markup into a document due to improper handling of DocumentType node fields during serialization. By crafting malicious input, an attacker can cause the XML serializer to prematurely terminate the DOCTYPE declaration, enabling the insertion of unauthorized content. This could lead to information disclosure or, in certain configurations, the execution of arbitrary code.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in xmldom. A remote attacker can exploit this vulnerability by providing specially crafted processing instruction data. Due to improper validation of the processing instruction closing sequence, the attacker can terminate the instruction prematurely and inject arbitrary XML nodes into the serialized output. This can lead to data manipulation and integrity issues within applications that process the affected XML.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, an HTTP client library. This vulnerability allows an attacker to exploit a prototype pollution issue if another part of the application has already polluted the Object.prototype. By doing so, the attacker can intercept and modify JSON responses or take control of the HTTP communication. This could lead to unauthorized access to sensitive information like user credentials and request details.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in Axios, a software library for making network requests. A remote attacker can exploit a prototype pollution vulnerability to inject arbitrary HTTP headers into outgoing requests. This occurs when the application's core object definitions are manipulated, causing Axios to misinterpret data and include attacker-controlled headers in network communications. This could lead to unauthorized actions or data manipulation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client for browsers and Node.js. This vulnerability occurs because the `toFormData` function recursively processes nested objects without a depth limit. A remote attacker can exploit this by sending deeply nested request data, which causes the Node.js process to crash due to a RangeError, leading to a potential Denial of Service (DoS) if the process crashes.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in Axios, a promise-based HTTP client. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to manipulate the `Object.prototype.validateStatus` property. By polluting this property, all HTTP error responses (such as 401, 403, or 500) are silently treated as successful responses. This can lead to a complete bypass of application-level authentication and error handling, potentially granting unauthorized access.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in Axios, a promise-based HTTP client. An attacker who can control the destination address of an Axios request can exploit this vulnerability. By using specific internal network addresses (within the 127.0.0.0/8 range, excluding 127.0.0.1), the attacker can completely bypass the NO_PROXY protection, potentially leading to unauthorized access or information disclosure within the network. This issue is an incomplete fix for a previous vulnerability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — | ||
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as a Prototype Pollution "Gadget" attack, allows a remote attacker to subtly alter JSON API responses. By manipulating a specific function, an attacker can selectively modify data within these responses. This could lead to significant security breaches, including unauthorized privilege escalation, fraudulent balance manipulation, or bypassing critical authorization checks.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in protobufjs, a library used to compile protobuf definitions into JavaScript functions. A remote attacker could exploit this vulnerability by providing a crafted descriptor that includes a non-string default value for a bytes field. This could lead to the generation of an unsafe expression within the toObject conversion function, ultimately allowing the attacker to execute arbitrary code.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios. This vulnerability, a Prototype Pollution "Gadget" attack, allows an attacker to escalate any existing Object.prototype pollution in an application's dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat Developer Hub 1.9.5 has been released.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Developer Hub (RHDH) is Red Hat\u0027s enterprise-grade, self-managed, customizable developer portal based on Backstage.io. RHDH is supported on OpenShift and other major Kubernetes clusters (AKS, EKS, GKE). The core features of RHDH include a single pane of glass, a centralized software catalog, self-service via golden path templates, and Tech Docs. RHDH is extensible by plugins.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26234",
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-24781",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-41242",
"url": "https://access.redhat.com/security/cve/CVE-2026-41242"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-41672",
"url": "https://access.redhat.com/security/cve/CVE-2026-41672"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-41673",
"url": "https://access.redhat.com/security/cve/CVE-2026-41673"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-41674",
"url": "https://access.redhat.com/security/cve/CVE-2026-41674"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-41675",
"url": "https://access.redhat.com/security/cve/CVE-2026-41675"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42033",
"url": "https://access.redhat.com/security/cve/CVE-2026-42033"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42035",
"url": "https://access.redhat.com/security/cve/CVE-2026-42035"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42039",
"url": "https://access.redhat.com/security/cve/CVE-2026-42039"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42041",
"url": "https://access.redhat.com/security/cve/CVE-2026-42041"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42043",
"url": "https://access.redhat.com/security/cve/CVE-2026-42043"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-42044",
"url": "https://access.redhat.com/security/cve/CVE-2026-42044"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44293",
"url": "https://access.redhat.com/security/cve/CVE-2026-44293"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44486",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44487",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44488",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44492",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44494",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44495",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-44496",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6321",
"url": "https://access.redhat.com/security/cve/CVE-2026-6321"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-6322",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-9277",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh",
"url": "https://catalog.redhat.com/search?gs\u0026searchType=containers\u0026q=rhdh"
},
{
"category": "external",
"summary": "https://developers.redhat.com/rhdh/overview",
"url": "https://developers.redhat.com/rhdh/overview"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/red_hat_developer_hub",
"url": "https://docs.redhat.com/en/documentation/red_hat_developer_hub"
},
{
"category": "external",
"summary": "https://issues.redhat.com/browse/RHDHBUGS-3128",
"url": "https://issues.redhat.com/browse/RHDHBUGS-3128"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26234.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Developer Hub 1.9.5 release.",
"tracking": {
"current_release_date": "2026-07-13T17:39:11+00:00",
"generator": {
"date": "2026-07-13T17:39:11+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26234",
"initial_release_date": "2026-06-16T09:33:13+00:00",
"revision_history": [
{
"date": "2026-06-16T09:33:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-16T14:24:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T17:39:11+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Hub 1.9",
"product": {
"name": "Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhdh:1.9::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Hub"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-hub-rhel9@sha256%3Adca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-hub-rhel9\u0026tag=1781187342"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-rhel9-operator@sha256%3A9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-rhel9-operator\u0026tag=1781187028"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"product": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"product_id": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rhdh-operator-bundle@sha256%3Adac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb?arch=amd64\u0026repository_url=registry.redhat.io/rhdh/rhdh-operator-bundle\u0026tag=1781191254"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64 as a component of Red Hat Developer Hub 1.9",
"product_id": "Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
},
"product_reference": "registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64",
"relates_to_product_reference": "Red Hat Developer Hub 1.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-6321",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-05-04T20:01:14.938426+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466582"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by providing a specially crafted Uniform Resource Locator (URL) containing percent-encoded path separators and dot segments. Due to incorrect processing, fast-uri would decode these elements before proper normalization, leading to distinct URLs resolving to the same internal path. This could allow an attacker to bypass security policies that rely on path-based comparisons, potentially gaining unauthorized access to resources.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: Path traversal vulnerability allows bypass of security policies",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6321"
},
{
"category": "external",
"summary": "RHBZ#2466582",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466582"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6321",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6321"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6321",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6321"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-q3j6-qgpj-74h6"
}
],
"release_date": "2026-05-04T19:31:57.253000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: Path traversal vulnerability allows bypass of security policies"
},
{
"cve": "CVE-2026-6322",
"cwe": {
"id": "CWE-140",
"name": "Improper Neutralization of Delimiters"
},
"discovery_date": "2026-05-05T11:01:00.332189+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466684"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in fast-uri. A remote attacker could exploit this vulnerability by crafting a malicious Uniform Resource Identifier (URI) that contains percent-encoded authority delimiters. The fast-uri library incorrectly decodes these delimiters during normalization and then re-emits them as raw separators, which can change the URI\u0027s intended authority. This issue allows applications that perform host allowlist checks, redirect validation, or outbound request routing to be steered to a different authority than specified, potentially bypassing security controls.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the `fast-uri` library allows an attacker to bypass security controls in Red Hat products that process Uniform Resource Identifiers (URIs). By crafting a malicious URI with percent-encoded authority delimiters, an attacker can cause the library to incorrectly interpret the URI\u0027s authority, potentially redirecting applications to an unintended domain. This could lead to a bypass of host allowlist checks, redirect validation, or outbound request routing.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-6322"
},
{
"category": "external",
"summary": "RHBZ#2466684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466684"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-6322",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-6322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-6322"
},
{
"category": "external",
"summary": "https://cna.openjsf.org/security-advisories.html",
"url": "https://cna.openjsf.org/security-advisories.html"
},
{
"category": "external",
"summary": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc",
"url": "https://github.com/fastify/fast-uri/security/advisories/GHSA-v39h-62p7-jpjc"
}
],
"release_date": "2026-05-05T10:29:16.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-uri: fast-uri: URI authority bypass due to improper delimiter handling"
},
{
"cve": "CVE-2026-9277",
"cwe": {
"id": "CWE-78",
"name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
},
"discovery_date": "2026-05-22T14:01:14.427751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2480741"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the shell-quote component. The quote() function did not properly validate object-token inputs, allowing line terminators to pass unescaped into the output. A remote attacker could exploit this vulnerability by providing specially crafted input, which a POSIX shell would interpret as a command separator. This could lead to command injection, enabling the attacker to execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-9277"
},
{
"category": "external",
"summary": "RHBZ#2480741",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2480741"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-9277",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-9277"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-9277"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote",
"url": "https://github.com/ljharb/shell-quote"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/commit/1518179",
"url": "https://github.com/ljharb/shell-quote/commit/1518179"
},
{
"category": "external",
"summary": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p",
"url": "https://github.com/ljharb/shell-quote/security/advisories/GHSA-w7jw-789q-3m8p"
},
{
"category": "external",
"summary": "https://www.npmjs.com/package/shell-quote",
"url": "https://www.npmjs.com/package/shell-quote"
}
],
"release_date": "2026-05-22T13:22:38.873000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "shell-quote: shell-quote: Arbitrary code execution via command injection due to unescaped line terminators"
},
{
"cve": "CVE-2026-24781",
"cwe": {
"id": "CWE-653",
"name": "Improper Isolation or Compartmentalization"
},
"discovery_date": "2026-05-04T19:03:41.437468+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466531"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in vm2, an open-source virtual machine (VM) sandbox for Node.js. This vulnerability allows an attacker to escape the sandbox environment by exploiting the `inspect` function. Successful exploitation can lead to arbitrary code execution on the host system, compromising the integrity and confidentiality of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-24781"
},
{
"category": "external",
"summary": "RHBZ#2466531",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466531"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-24781",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-24781"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-24781"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189",
"url": "https://github.com/patriksimek/vm2/commit/8d30d93213c1898b3e035298b89a814970dd1189"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c",
"url": "https://github.com/patriksimek/vm2/commit/bdd3d15e57bc4ec5e70365cd79f7cb0256e5f88c"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228",
"url": "https://github.com/patriksimek/vm2/commit/fd266d084e0a3322d0f71ba2a8dc4c96cd030228"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0",
"url": "https://github.com/patriksimek/vm2/releases/tag/v3.11.0"
},
{
"category": "external",
"summary": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c",
"url": "https://github.com/patriksimek/vm2/security/advisories/GHSA-v37h-5mfm-c47c"
}
],
"release_date": "2026-05-04T16:33:32.869000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "vm2: vm2: Arbitrary code execution via sandbox breakout through inspect function"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-41242",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-04-18T17:00:50.677423+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2459442"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in protobufjs, a JavaScript (JS) library used for compiling protobuf definitions. A remote attacker with low privileges can exploit this vulnerability by injecting arbitrary code into the \"type\" fields of protobuf definitions. This malicious code will then execute during the object decoding process, leading to arbitrary code execution and potentially full system compromise.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobufjs: protobufjs: Arbitrary code execution via injected protobuf definition type fields",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-41242"
},
{
"category": "external",
"summary": "RHBZ#2459442",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2459442"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-41242",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41242"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41242",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41242"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/commit/535df444ac060243722ac5d672db205e5c531d75",
"url": "https://github.com/protobufjs/protobuf.js/commit/535df444ac060243722ac5d672db205e5c531d75"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/commit/ff7b2afef8754837cc6dc64c864cd111ab477956",
"url": "https://github.com/protobufjs/protobuf.js/commit/ff7b2afef8754837cc6dc64c864cd111ab477956"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/releases/tag/protobufjs-v7.5.5",
"url": "https://github.com/protobufjs/protobuf.js/releases/tag/protobufjs-v7.5.5"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/releases/tag/protobufjs-v8.0.1",
"url": "https://github.com/protobufjs/protobuf.js/releases/tag/protobufjs-v8.0.1"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-xq3m-2v4x-88gg",
"url": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-xq3m-2v4x-88gg"
}
],
"release_date": "2026-04-18T16:18:10.652000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "protobufjs: protobufjs: Arbitrary code execution via injected protobuf definition type fields"
},
{
"cve": "CVE-2026-41672",
"cwe": {
"id": "CWE-91",
"name": "XML Injection (aka Blind XPath Injection)"
},
"discovery_date": "2026-05-07T05:02:05.372643+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467631"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in xmldom and @xmldom/xmldom, a JavaScript module for parsing and serializing XML. This vulnerability allows an attacker to inject malicious content into XML comments. By doing so, the attacker can prematurely close a comment and insert unauthorized XML elements into the final output. This could lead to the manipulation of data within the XML document.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "xmldom: @xmldom/xmldom: xmldom: Arbitrary XML Node Injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is rated as Important. The `xmldom` JavaScript module, used in various Red Hat products, is vulnerable to arbitrary XML node injection. An attacker can craft malicious XML comments to prematurely terminate a comment block and insert unauthorized XML elements, leading to data manipulation within the processed XML document. This risk is present in applications that handle and serialize untrusted XML input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-41672"
},
{
"category": "external",
"summary": "RHBZ#2467631",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467631"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-41672",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41672"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41672",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41672"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/b397540889086da868c30c366ad5c220d1a750c7",
"url": "https://github.com/xmldom/xmldom/commit/b397540889086da868c30c366ad5c220d1a750c7"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/fda7cc313de30243fea35cada64e0bb12099c2a1",
"url": "https://github.com/xmldom/xmldom/commit/fda7cc313de30243fea35cada64e0bb12099c2a1"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/pull/987",
"url": "https://github.com/xmldom/xmldom/pull/987"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.8.13",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.8.13"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.9.10",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.9.10"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8",
"url": "https://github.com/xmldom/xmldom/security/advisories/GHSA-j759-j44w-7fr8"
}
],
"release_date": "2026-05-07T03:36:16.914000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "xmldom: @xmldom/xmldom: xmldom: Arbitrary XML Node Injection"
},
{
"cve": "CVE-2026-41673",
"cwe": {
"id": "CWE-776",
"name": "Improper Restriction of Recursive Entity References in DTDs (\u0027XML Entity Expansion\u0027)"
},
"discovery_date": "2026-05-07T05:02:01.500444+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467630"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `xmldom` library, a JavaScript module for parsing XML documents. An attacker could exploit this vulnerability by providing a specially crafted, deeply nested XML document. This could lead to a Denial of Service (DoS) by causing the application to crash due to excessive recursion.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "@xmldom/xmldom: xmldom: xmldom: Denial of Service via deeply nested XML documents",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the `xmldom` library, which can lead to application crashes. The flaw occurs when processing specially crafted, deeply nested XML documents, causing excessive recursion and exhausting system resources. This can impact the availability of Red Hat products that utilize `xmldom` to parse untrusted XML input, as it does not require authentication or complex preconditions for exploitation.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-41673"
},
{
"category": "external",
"summary": "RHBZ#2467630",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467630"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-41673",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41673"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41673",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41673"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/17678a2a73ecbd1a2da90f3d47dc23da9cef81aa",
"url": "https://github.com/xmldom/xmldom/commit/17678a2a73ecbd1a2da90f3d47dc23da9cef81aa"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/291257493cb0eb6980eda83b162a9c4e6d7d2597",
"url": "https://github.com/xmldom/xmldom/commit/291257493cb0eb6980eda83b162a9c4e6d7d2597"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/2d6d6916ed8a4c223db1f6d7560ab4544c465b0f",
"url": "https://github.com/xmldom/xmldom/commit/2d6d6916ed8a4c223db1f6d7560ab4544c465b0f"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/430357c7b6333108856e917bf2367afe5ceb6f8a",
"url": "https://github.com/xmldom/xmldom/commit/430357c7b6333108856e917bf2367afe5ceb6f8a"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/4845ef109221df0890825de2822fbe77afba3afe",
"url": "https://github.com/xmldom/xmldom/commit/4845ef109221df0890825de2822fbe77afba3afe"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/8834218c85ac2a4d757b9587c9028e67c2f7b6c3",
"url": "https://github.com/xmldom/xmldom/commit/8834218c85ac2a4d757b9587c9028e67c2f7b6c3"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/8b7cfd1491314abdc347261921d7334ff15f7112",
"url": "https://github.com/xmldom/xmldom/commit/8b7cfd1491314abdc347261921d7334ff15f7112"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/b0620383abc1df067f3ce1014c43ae1bc1161eeb",
"url": "https://github.com/xmldom/xmldom/commit/b0620383abc1df067f3ce1014c43ae1bc1161eeb"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/e6edcab6bef5bcdba0b220bb35442aa72f452b84",
"url": "https://github.com/xmldom/xmldom/commit/e6edcab6bef5bcdba0b220bb35442aa72f452b84"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.8.13",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.8.13"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.9.10",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.9.10"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw",
"url": "https://github.com/xmldom/xmldom/security/advisories/GHSA-2v35-w6hq-6mfw"
}
],
"release_date": "2026-05-07T03:40:28.378000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "@xmldom/xmldom: xmldom: xmldom: Denial of Service via deeply nested XML documents"
},
{
"cve": "CVE-2026-41674",
"cwe": {
"id": "CWE-91",
"name": "XML Injection (aka Blind XPath Injection)"
},
"discovery_date": "2026-05-07T05:01:25.803044+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467620"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in xmldom and @xmldom/xmldom, a JavaScript library for parsing and serializing XML. This vulnerability allows an attacker to inject arbitrary XML markup into a document due to improper handling of DocumentType node fields during serialization. By crafting malicious input, an attacker can cause the XML serializer to prematurely terminate the DOCTYPE declaration, enabling the insertion of unauthorized content. This could lead to information disclosure or, in certain configurations, the execution of arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "xmldom: xmldom: Arbitrary XML markup injection",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-41674"
},
{
"category": "external",
"summary": "RHBZ#2467620",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467620"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-41674",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41674"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41674",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41674"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/372008f9ae0e20fd69f761c7b79e202598267314",
"url": "https://github.com/xmldom/xmldom/commit/372008f9ae0e20fd69f761c7b79e202598267314"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.8.13",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.8.13"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.9.10",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.9.10"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h",
"url": "https://github.com/xmldom/xmldom/security/advisories/GHSA-f6ww-3ggp-fr8h"
}
],
"release_date": "2026-05-07T03:47:51.140000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "xmldom: xmldom: Arbitrary XML markup injection"
},
{
"cve": "CVE-2026-41675",
"cwe": {
"id": "CWE-91",
"name": "XML Injection (aka Blind XPath Injection)"
},
"discovery_date": "2026-05-07T05:01:58.399809+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2467629"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in xmldom. A remote attacker can exploit this vulnerability by providing specially crafted processing instruction data. Due to improper validation of the processing instruction closing sequence, the attacker can terminate the instruction prematurely and inject arbitrary XML nodes into the serialized output. This can lead to data manipulation and integrity issues within applications that process the affected XML.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "xmldom: xmldom: Arbitrary XML node injection via crafted processing instructions",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in xmldom allows a remote attacker to inject arbitrary XML nodes into serialized output. This occurs due to insufficient validation of processing instruction data, enabling premature termination of instructions and subsequent data manipulation within applications that process affected XML. Red Hat products utilizing xmldom for XML processing may be susceptible if they handle untrusted XML input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-41675"
},
{
"category": "external",
"summary": "RHBZ#2467629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2467629"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-41675",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-41675"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-41675",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-41675"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/commit/7207a4b0e0bcc228868075ed991665ef9f73b1c2",
"url": "https://github.com/xmldom/xmldom/commit/7207a4b0e0bcc228868075ed991665ef9f73b1c2"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.8.13",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.8.13"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/releases/tag/0.9.10",
"url": "https://github.com/xmldom/xmldom/releases/tag/0.9.10"
},
{
"category": "external",
"summary": "https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx",
"url": "https://github.com/xmldom/xmldom/security/advisories/GHSA-x6wf-f3px-wcqx"
}
],
"release_date": "2026-05-07T03:49:34.056000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "xmldom: xmldom: Arbitrary XML node injection via crafted processing instructions"
},
{
"cve": "CVE-2026-42033",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-04-24T18:01:20.937507+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461607"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, an HTTP client library. This vulnerability allows an attacker to exploit a prototype pollution issue if another part of the application has already polluted the Object.prototype. By doing so, the attacker can intercept and modify JSON responses or take control of the HTTP communication. This could lead to unauthorized access to sensitive information like user credentials and request details.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: HTTP Transport Hijacking via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42033"
},
{
"category": "external",
"summary": "RHBZ#2461607",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461607"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42033",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42033"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42033",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42033"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pf86-5x62-jrwf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pf86-5x62-jrwf"
}
],
"release_date": "2026-04-24T17:36:44.132000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: HTTP Transport Hijacking via Prototype Pollution"
},
{
"cve": "CVE-2026-42035",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-04-24T18:01:17.109481+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461606"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a software library for making network requests. A remote attacker can exploit a prototype pollution vulnerability to inject arbitrary HTTP headers into outgoing requests. This occurs when the application\u0027s core object definitions are manipulated, causing Axios to misinterpret data and include attacker-controlled headers in network communications. This could lead to unauthorized actions or data manipulation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Arbitrary HTTP header injection via prototype pollution",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42035"
},
{
"category": "external",
"summary": "RHBZ#2461606",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461606"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42035",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42035"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42035",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42035"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-6chq-wfr3-2hj9",
"url": "https://github.com/axios/axios/security/advisories/GHSA-6chq-wfr3-2hj9"
}
],
"release_date": "2026-04-24T17:38:07.752000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "axios: Axios: Arbitrary HTTP header injection via prototype pollution"
},
{
"cve": "CVE-2026-42039",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-24T19:01:44.887156+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461630"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client for browsers and Node.js. This vulnerability occurs because the `toFormData` function recursively processes nested objects without a depth limit. A remote attacker can exploit this by sending deeply nested request data, which causes the Node.js process to crash due to a RangeError, leading to a potential Denial of Service (DoS) if the process crashes.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Node.js: Axios: Denial of Service via unbounded recursion in toFormData with deeply nested request data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42039"
},
{
"category": "external",
"summary": "RHBZ#2461630",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461630"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42039",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42039"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42039",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42039"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-62hf-57xw-28j9",
"url": "https://github.com/axios/axios/security/advisories/GHSA-62hf-57xw-28j9"
}
],
"release_date": "2026-04-24T18:01:30.775000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Node.js: Axios: Denial of Service via unbounded recursion in toFormData with deeply nested request data"
},
{
"cve": "CVE-2026-42041",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-04-24T19:01:41.034289+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461629"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to manipulate the `Object.prototype.validateStatus` property. By polluting this property, all HTTP error responses (such as 401, 403, or 500) are silently treated as successful responses. This can lead to a complete bypass of application-level authentication and error handling, potentially granting unauthorized access.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Authentication bypass due to prototype pollution of HTTP error handling",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42041"
},
{
"category": "external",
"summary": "RHBZ#2461629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461629"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42041",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42041"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-w9j2-pvgh-6h63",
"url": "https://github.com/axios/axios/security/advisories/GHSA-w9j2-pvgh-6h63"
}
],
"release_date": "2026-04-24T17:55:30.036000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Authentication bypass due to prototype pollution of HTTP error handling"
},
{
"cve": "CVE-2026-42043",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2026-04-24T19:01:22.552379+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461626"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. An attacker who can control the destination address of an Axios request can exploit this vulnerability. By using specific internal network addresses (within the 127.0.0.0/8 range, excluding 127.0.0.1), the attacker can completely bypass the NO_PROXY protection, potentially leading to unauthorized access or information disclosure within the network. This issue is an incomplete fix for a previous vulnerability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: NO_PROXY bypass via crafted URL",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42043"
},
{
"category": "external",
"summary": "RHBZ#2461626",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461626"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42043",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42043"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42043",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42043"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pmwg-cvhr-8vh7",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pmwg-cvhr-8vh7"
}
],
"release_date": "2026-04-24T17:54:42.668000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: NO_PROXY bypass via crafted URL"
},
{
"cve": "CVE-2026-42044",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-04-24T19:01:13.418725+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2461624"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a widely used HTTP client. This vulnerability, known as a Prototype Pollution \"Gadget\" attack, allows a remote attacker to subtly alter JSON API responses. By manipulating a specific function, an attacker can selectively modify data within these responses. This could lead to significant security breaches, including unauthorized privilege escalation, fraudulent balance manipulation, or bypassing critical authorization checks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Invisible JSON Response Tampering via Prototype Pollution Gadget",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-42044"
},
{
"category": "external",
"summary": "RHBZ#2461624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2461624"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-42044",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-42044"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-42044",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-42044"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-3w6x-2g7m-8v23",
"url": "https://github.com/axios/axios/security/advisories/GHSA-3w6x-2g7m-8v23"
}
],
"release_date": "2026-04-24T17:49:49.517000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Invisible JSON Response Tampering via Prototype Pollution Gadget"
},
{
"cve": "CVE-2026-44293",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2026-05-13T16:03:50.961609+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2477104"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in protobufjs, a library used to compile protobuf definitions into JavaScript functions. A remote attacker could exploit this vulnerability by providing a crafted descriptor that includes a non-string default value for a bytes field. This could lead to the generation of an unsafe expression within the toObject conversion function, ultimately allowing the attacker to execute arbitrary code.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "protobufjs: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw affecting Red Hat products that incorporate the protobufjs library. protobufjs is vulnerable to arbitrary code execution when compiling protobuf definitions into JavaScript. During generation of the toObject conversion function, a schema-controlled default value on a bytes field that is not a string can be emitted as unsafe JavaScript code. An attacker who can supply or influence the protobuf descriptor processed by the application (low privileges required) may achieve code execution in the Node.js process context. Fixed upstream in protobufjs 7.5.6 and 8.0.2. Affects Red Hat offerings that bundle protobufjs and process attacker-influenced protobuf schemas at runtime.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44293"
},
{
"category": "external",
"summary": "RHBZ#2477104",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2477104"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44293",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44293"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44293",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44293"
},
{
"category": "external",
"summary": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-66ff-xgx4-vchm",
"url": "https://github.com/protobufjs/protobuf.js/security/advisories/GHSA-66ff-xgx4-vchm"
}
],
"release_date": "2026-05-13T14:43:33.342000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "protobufjs: protobufjs: Arbitrary code execution due to unsafe expression generation from crafted protobuf descriptors"
},
{
"cve": "CVE-2026-44486",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:30.944384+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487947"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client, specifically in its Node.js HTTP adapter. When Axios is configured to use an authenticated proxy and follows a redirect, it may inadvertently send the Proxy-Authorization header, containing proxy credentials, to the redirect target. This can lead to the disclosure of sensitive proxy credentials to an unintended remote server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in the Axios Node.js HTTP adapter. Red Hat products utilizing Axios in a Node.js environment with an authenticated proxy and automatic redirects enabled are susceptible. The vulnerability arises when a request, initially sent through an authenticated proxy, is redirected to a target that no longer uses the proxy, potentially leaking `Proxy-Authorization` headers containing sensitive credentials to an untrusted remote server. This risk is heightened in deployments where applications interact with untrusted HTTP origins.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44486"
},
{
"category": "external",
"summary": "RHBZ#2487947",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487947"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44486",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44486"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44486"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc",
"url": "https://github.com/axios/axios/security/advisories/GHSA-j5f8-grm9-p9fc"
}
],
"release_date": "2026-06-11T15:39:07.714000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via HTTP redirects"
},
{
"cve": "CVE-2026-44487",
"cwe": {
"id": "CWE-201",
"name": "Insertion of Sensitive Information Into Sent Data"
},
"discovery_date": "2026-06-11T17:01:34.091476+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487948"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. During specific proxy-to-direct redirect flows in the Node.js HTTP adapter, a remote attacker could exploit this vulnerability. The Proxy-Authorization header, which contains proxy credentials and is intended only for the outbound proxy, may be forwarded to the final redirected origin. This can lead to the disclosure of sensitive proxy credentials to an unintended third party.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure of proxy credentials via redirect flows",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important information disclosure flaw in Axios affecting Node.js environments. When an application uses Axios with an authenticated HTTP proxy and follows redirects from an HTTP to a non-proxied HTTPS destination, the Proxy-Authorization header may be inadvertently sent to the final origin server. This could lead to the exposure of sensitive proxy credentials to an unintended third party.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44487"
},
{
"category": "external",
"summary": "RHBZ#2487948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487948"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44487"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v",
"url": "https://github.com/axios/axios/security/advisories/GHSA-p92q-9vqr-4j8v"
}
],
"release_date": "2026-06-11T15:38:25.150000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure of proxy credentials via redirect flows"
},
{
"cve": "CVE-2026-44488",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-06-11T17:01:36.836488+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487949"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. When using the fetch adapter, Axios did not properly enforce configured request and response size limits. This vulnerability allows a remote attacker, through a malicious or compromised server, or by supplying a large data URL, to send or receive oversized data bodies. This can lead to resource exhaustion in server-side applications, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Denial of Service due to unenforced request and response size limits",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A denial of service flaw was found in Axios, a JavaScript HTTP client library. This issue arises when applications utilize the `fetch` adapter, as configured request and response size limits are not properly enforced. A remote attacker could exploit this by sending or receiving excessively large data bodies, leading to resource exhaustion and potential denial of service in affected server-side applications.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44488"
},
{
"category": "external",
"summary": "RHBZ#2487949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44488",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44488"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44488"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-777c-7fjr-54vf"
}
],
"release_date": "2026-06-11T15:37:38.013000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Denial of Service due to unenforced request and response size limits"
},
{
"cve": "CVE-2026-44492",
"cwe": {
"id": "CWE-289",
"name": "Authentication Bypass by Alternate Name"
},
"discovery_date": "2026-06-11T17:00:56.761751+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487938"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability occurs because Axios does not properly normalize IPv4-mapped IPv6 addresses. When a NO_PROXY setting is configured to block direct access to specific IPv4 addresses, an attacker can bypass this restriction by using the IPv4-mapped IPv6 form of the address in a request URL. This allows the request to be routed through the proxy, potentially exposing internal services or sensitive information that should otherwise be inaccessible.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in Axios, a JavaScript HTTP client library, that allows for a proxy bypass. When a `NO_PROXY` environment variable is configured to prevent direct connections to specific IPv4 addresses, an attacker can craft a request URL using the IPv4-mapped IPv6 address format. This bypasses the intended `NO_PROXY` exclusion, routing the request through the configured proxy and potentially exposing internal services or sensitive information, such as cloud instance metadata credentials.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44492"
},
{
"category": "external",
"summary": "RHBZ#2487938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487938"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44492",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44492"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44492"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv",
"url": "https://github.com/axios/axios/security/advisories/GHSA-pjwm-pj3p-43mv"
}
],
"release_date": "2026-06-11T15:29:13.890000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Proxy bypass via IPv4-mapped IPv6 address non-normalization"
},
{
"cve": "CVE-2026-44494",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:01:12.945664+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487942"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. This vulnerability, a Prototype Pollution \"Gadget\" attack, allows an attacker to escalate any existing Object.prototype pollution in an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. This enables the attacker to intercept, read, and modify all HTTP traffic, including sensitive authentication credentials. The flaw occurs because the `config.proxy` setting is susceptible to prototype pollution, allowing an attacker to inject a malicious proxy server.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in the Axios library allows an attacker to escalate existing prototype pollution vulnerabilities within an application\u0027s dependency tree into a full Man-in-the-Middle (MITM) attack. By injecting a malicious proxy configuration into the `Object.prototype`, an attacker can intercept, read, and modify all HTTP traffic, including sensitive authentication credentials, without direct user interaction. This poses a significant risk to data confidentiality and integrity in Red Hat products that utilize the Axios library.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44494"
},
{
"category": "external",
"summary": "RHBZ#2487942",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487942"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44494",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44494"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44494"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh",
"url": "https://github.com/axios/axios/security/advisories/GHSA-35jp-ww65-95wh"
}
],
"release_date": "2026-06-11T15:32:03.155000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 8.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Man-in-the-Middle (MITM) attack via Prototype Pollution"
},
{
"cve": "CVE-2026-44495",
"cwe": {
"id": "CWE-915",
"name": "Improperly Controlled Modification of Dynamically-Determined Object Attributes"
},
"discovery_date": "2026-06-11T17:00:53.999811+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487937"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios, a promise-based HTTP client. This vulnerability involves prototype pollution gadgets in the request configuration processing. If another vulnerability has already polluted the Object.prototype.transformResponse, affected Axios versions may incorrectly interpret this inherited value as part of the request configuration or as an option validator. Axios does not itself create the prototype pollution. Exploitability requires a separate prototype-pollution vulnerability or equivalent attacker control over Object.prototype before Axios creates a request.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Information disclosure due to prototype pollution vulnerability",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important vulnerability in Axios, a promise-based HTTP client, can lead to information disclosure, including credential theft and response hijacking, or denial of service. Exploitation requires a separate prototype pollution vulnerability in the same JavaScript process, allowing an attacker to control `Object.prototype.transformResponse`. Red Hat products using affected Axios versions are at risk if another component introduces such pollution.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44495"
},
{
"category": "external",
"summary": "RHBZ#2487937",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487937"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44495",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44495"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44495"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw",
"url": "https://github.com/axios/axios/security/advisories/GHSA-3g43-6gmg-66jw"
}
],
"release_date": "2026-06-11T15:33:12.433000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Information disclosure due to prototype pollution vulnerability"
},
{
"cve": "CVE-2026-44496",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2026-06-11T17:01:15.856386+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2487943"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Axios. A remote attacker, by influencing the XSRF cookie name in a browser environment, could cause the application to construct a regular expression that leads to excessive processing. This can result in a client-side Denial of Service (DoS), where the affected browser tab may freeze, impacting the availability of the application for the user.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This Important flaw in Axios can lead to a client-side Denial of Service. An attacker capable of influencing the XSRF cookie name within a browser environment could trigger excessive regular expression processing, causing the affected browser tab to freeze and degrade user availability. This issue specifically impacts browser-based applications and does not affect Node.js HTTP adapter usage, React Native, or web workers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"known_not_affected": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-44496"
},
{
"category": "external",
"summary": "RHBZ#2487943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2487943"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-44496",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-44496"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-44496"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf",
"url": "https://github.com/axios/axios/security/advisories/GHSA-hfxv-24rg-xrqf"
}
],
"release_date": "2026-06-11T15:34:28.492000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T09:33:13+00:00",
"details": "For more about Red Hat Developer Hub, see References links",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26234"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-hub-rhel9@sha256:dca74b10e54c6598ef2f8d962f677895ee6ca745778f0f5db25e0ebfe443990e_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-operator-bundle@sha256:dac8b7c19b9bf59aa6df97828ae6955252ba45246d1597cd2cf46c028dfce4fb_amd64",
"Red Hat Developer Hub 1.9:registry.redhat.io/rhdh/rhdh-rhel9-operator@sha256:9e95e1183f47b0f9aa439bdb408a0ccdf87b72cefe704abad0c7e9a90bd607f5_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: Axios: Client-side Denial of Service via unescaped regex metacharacters in XSRF cookie name"
}
]
}
RHSA-2026:26447
Vulnerability from csaf_redhat - Published: 2026-06-16 23:08 - Updated: 2026-07-13 23:21A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64 | — |
Vendor Fix
fix
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for podman is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use container pods. Container pods is a concept in Kubernetes.\n\nSecurity Fix(es):\n\n* crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26447",
"url": "https://access.redhat.com/errata/RHSA-2026:26447"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26447.json"
}
],
"title": "Red Hat Security Advisory: podman security update",
"tracking": {
"current_release_date": "2026-07-13T23:21:53+00:00",
"generator": {
"date": "2026-07-13T23:21:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26447",
"initial_release_date": "2026-06-16T23:08:41+00:00",
"revision_history": [
{
"date": "2026-06-16T23:08:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-16T23:08:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T23:21:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.8.2-3.el9_8.src",
"product": {
"name": "podman-6:5.8.2-3.el9_8.src",
"product_id": "podman-6:5.8.2-3.el9_8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.8.2-3.el9_8?arch=src\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-plugins-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-plugins-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-remote-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-remote-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-tests-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-tests-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_id": "podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.8.2-3.el9_8?arch=aarch64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-remote-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-remote-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-tests-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-tests-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_id": "podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.8.2-3.el9_8?arch=ppc64le\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-plugins-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-plugins-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-remote-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-remote-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-tests-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-tests-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_id": "podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.8.2-3.el9_8?arch=x86_64\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-plugins-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-plugins-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-remote-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-remote-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-tests-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-tests-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-debugsource-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-plugins-debuginfo@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-remote-debuginfo@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
},
{
"category": "product_version",
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"product": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_id": "podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-tests-debuginfo@5.8.2-3.el9_8?arch=s390x\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "podman-docker-6:5.8.2-3.el9_8.noarch",
"product": {
"name": "podman-docker-6:5.8.2-3.el9_8.noarch",
"product_id": "podman-docker-6:5.8.2-3.el9_8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@5.8.2-3.el9_8?arch=noarch\u0026epoch=6"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.8.2-3.el9_8.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src"
},
"product_reference": "podman-6:5.8.2-3.el9_8.src",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-debugsource-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-6:5.8.2-3.el9_8.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch"
},
"product_reference": "podman-docker-6:5.8.2-3.el9_8.noarch",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-plugins-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-plugins-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-plugins-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-remote-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-remote-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-remote-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-remote-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-tests-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-tests-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-tests-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-tests-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64"
},
"product_reference": "podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le"
},
"product_reference": "podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x"
},
"product_reference": "podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
},
"product_reference": "podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64",
"relates_to_product_reference": "AppStream-9.8.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T23:08:41+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26447"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T23:08:41+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26447"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-16T23:08:41+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26447"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.src",
"AppStream-9.8.0.Z.MAIN.EUS:podman-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-debugsource-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-docker-6:5.8.2-3.el9_8.noarch",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-plugins-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-remote-debuginfo-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-6:5.8.2-3.el9_8.x86_64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.aarch64",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.ppc64le",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.s390x",
"AppStream-9.8.0.Z.MAIN.EUS:podman-tests-debuginfo-6:5.8.2-3.el9_8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
}
]
}
RHSA-2026:26568
Vulnerability from csaf_redhat - Published: 2026-06-17 12:57 - Updated: 2026-07-14 05:57The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
A flaw was found in BuildKit, a toolkit for converting source code to build artifacts. An untrusted BuildKit frontend can be leveraged to craft a malicious API message, allowing files to be written outside of the designated BuildKit state directory. This vulnerability, which is a form of arbitrary file write, could enable an attacker to execute unauthorized code or escalate their privileges on the system. This issue arises when custom BuildKit frontends are used with specific configuration options.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Workaround
|
A flaw was found in BuildKit. Insufficient validation of Git URL fragment subdirectory components may allow a remote attacker to access files outside the checked-out Git repository root. This access is limited to files on the same mounted filesystem. This vulnerability could lead to unauthorized information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — | ||
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A new version of OpenShift API for Data Protection (OADP) is now available.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenShift API for Data Protection (OADP) enables you to back up and restore\napplication resources, persistent volume data, and internal container\nimages to external backup storage. OADP enables both file system-based and\nsnapshot-based backups for persistent volumes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26568",
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33186",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33747",
"url": "https://access.redhat.com/security/cve/CVE-2026-33747"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33748",
"url": "https://access.redhat.com/security/cve/CVE-2026-33748"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/backup_and_restore/oadp-application-backup-and-restore",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/backup_and_restore/oadp-application-backup-and-restore"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26568.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift API for Data Protection",
"tracking": {
"current_release_date": "2026-07-14T05:57:00+00:00",
"generator": {
"date": "2026-07-14T05:57:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26568",
"initial_release_date": "2026-06-17T12:57:45+00:00",
"revision_history": [
{
"date": "2026-06-17T12:57:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-17T12:57:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:57:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "OpenShift API for Data Protection 1.5",
"product": {
"name": "OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_api_data_protection:1.5::el9"
}
}
}
],
"category": "product_family",
"name": "OpenShift API for Data Protection"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"product_id": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel9@sha256%3Af0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel9\u0026tag=1779770057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"product_id": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-hypershift-velero-plugin-rhel9@sha256%3A5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9\u0026tag=1779244652"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"product_id": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel9@sha256%3A31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9\u0026tag=1779244923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"product_id": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-non-admin-rhel9@sha256%3A5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-non-admin-rhel9\u0026tag=1779243495"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"product_id": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel9-operator@sha256%3A2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-rhel9-operator\u0026tag=1779843906"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"product_id": "registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-operator-bundle@sha256%3A71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1779844974"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel9@sha256%3Ac9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel9\u0026tag=1779808027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel9@sha256%3A39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel9\u0026tag=1779245274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel9@sha256%3Ada0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9\u0026tag=1779244577"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel9@sha256%3A7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9\u0026tag=1779244988"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-legacy-aws-rhel9@sha256%3A765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9\u0026tag=1779244697"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256%3A1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9\u0026tag=1779243501"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"product_id": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-hypershift-velero-plugin-rhel9@sha256%3A04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9\u0026tag=1779244652"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"product_id": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel9@sha256%3Acf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9\u0026tag=1779244923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"product_id": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel9@sha256%3A15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel9\u0026tag=1779770057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"product_id": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-non-admin-rhel9@sha256%3A1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-non-admin-rhel9\u0026tag=1779243495"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"product_id": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel9-operator@sha256%3Af1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-rhel9-operator\u0026tag=1779843906"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel9@sha256%3Af05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel9\u0026tag=1779808027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel9@sha256%3A47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel9\u0026tag=1779245274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel9@sha256%3A7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9\u0026tag=1779244577"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel9@sha256%3Ac1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9\u0026tag=1779244988"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-legacy-aws-rhel9@sha256%3Ab3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9\u0026tag=1779244697"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256%3A071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48?arch=arm64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9\u0026tag=1779243501"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"product_id": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-hypershift-velero-plugin-rhel9@sha256%3Afda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9\u0026tag=1779244652"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"product_id": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel9@sha256%3Ac7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9\u0026tag=1779244923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"product_id": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel9@sha256%3A99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel9\u0026tag=1779770057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"product_id": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-non-admin-rhel9@sha256%3A1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-non-admin-rhel9\u0026tag=1779243495"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"product_id": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel9-operator@sha256%3A4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-rhel9-operator\u0026tag=1779843906"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel9@sha256%3A99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel9\u0026tag=1779808027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel9@sha256%3Abc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel9\u0026tag=1779245274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel9@sha256%3Ab3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9\u0026tag=1779244577"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel9@sha256%3A7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9\u0026tag=1779244988"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-legacy-aws-rhel9@sha256%3Aacb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9\u0026tag=1779244697"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256%3A2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9\u0026tag=1779243501"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-hypershift-velero-plugin-rhel9@sha256%3A326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9\u0026tag=1779244652"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel9@sha256%3Ad2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9\u0026tag=1779244923"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel9@sha256%3Aac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel9\u0026tag=1779770057"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-non-admin-rhel9@sha256%3Affeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-non-admin-rhel9\u0026tag=1779243495"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel9-operator@sha256%3A8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-rhel9-operator\u0026tag=1779843906"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel9@sha256%3A0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel9\u0026tag=1779808027"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel9@sha256%3Aa7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel9\u0026tag=1779245274"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel9@sha256%3A3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9\u0026tag=1779244577"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel9@sha256%3A2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9\u0026tag=1779244988"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-legacy-aws-rhel9@sha256%3A39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9\u0026tag=1779244697"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"product": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"product_id": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256%3Affaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9\u0026tag=1779243501"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64 as a component of OpenShift API for Data Protection 1.5",
"product_id": "OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
},
"product_reference": "registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64",
"relates_to_product_reference": "OpenShift API for Data Protection 1.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-33747",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-03-27T02:01:29.921765+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452076"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in BuildKit, a toolkit for converting source code to build artifacts. An untrusted BuildKit frontend can be leveraged to craft a malicious API message, allowing files to be written outside of the designated BuildKit state directory. This vulnerability, which is a form of arbitrary file write, could enable an attacker to execute unauthorized code or escalate their privileges on the system. This issue arises when custom BuildKit frontends are used with specific configuration options.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33747"
},
{
"category": "external",
"summary": "RHBZ#2452076",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452076"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33747",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33747"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33747",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33747"
},
{
"category": "external",
"summary": "https://github.com/moby/buildkit/releases/tag/v0.28.1",
"url": "https://github.com/moby/buildkit/releases/tag/v0.28.1"
},
{
"category": "external",
"summary": "https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj",
"url": "https://github.com/moby/buildkit/security/advisories/GHSA-4c29-8rgm-jvjj"
}
],
"release_date": "2026-03-27T00:49:06.165000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, avoid using untrusted BuildKit frontends. Restrict the use of custom BuildKit frontends to only those from verified and trusted sources. Do not specify untrusted frontends via `#syntax` or `--build-arg BUILDKIT_SYNTAX`.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 8.2,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "BuildKit: github.com/moby/buildkit: BuildKit: Arbitrary file write and code execution via untrusted frontend"
},
{
"cve": "CVE-2026-33748",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2026-03-27T15:02:00.107493+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2452271"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in BuildKit. Insufficient validation of Git URL fragment subdirectory components may allow a remote attacker to access files outside the checked-out Git repository root. This access is limited to files on the same mounted filesystem. This vulnerability could lead to unauthorized information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33748"
},
{
"category": "external",
"summary": "RHBZ#2452271",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2452271"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33748",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33748"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33748",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33748"
},
{
"category": "external",
"summary": "https://docs.docker.com/build/concepts/context/#url-fragments",
"url": "https://docs.docker.com/build/concepts/context/#url-fragments"
},
{
"category": "external",
"summary": "https://github.com/moby/buildkit/releases/tag/v0.28.1",
"url": "https://github.com/moby/buildkit/releases/tag/v0.28.1"
},
{
"category": "external",
"summary": "https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg",
"url": "https://github.com/moby/buildkit/security/advisories/GHSA-4vrq-3vrq-g6gg"
}
],
"release_date": "2026-03-27T14:00:21.200000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "github.com/moby/buildkit: BuildKit: Unauthorized file access via Git URL fragment subdir components"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
],
"known_not_affected": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T12:57:45+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26568"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:04cd0a20d0f47d97111301293bdded1eb3c4b303c9276e39f00b61af649ef77e_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:326e5c4f290916e99455d128911cdebcc2f476128004e4b4df1903a1a621a366_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:5cc12932887111178da936ab430e9f16b7f710a4ae98c7f1e8698720624b0b6d_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-hypershift-velero-plugin-rhel9@sha256:fda6c87a82490205e0cf97028fe6750e5407b677fb4d0a38d9d3b95e8af396d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:31bb587a13b02aeda8a55639f800020d68e6e91d1e37a0346bc0c09819254940_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:c7707d79297ad9e86a6061721ddbbab1ad389482d2c9e894268e1ef09a5311cf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:cf1a0fdd87815165d037d8361af27a7caa6ba4d2236767a649dfbc62090940a9_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel9@sha256:d2aa0a929a06d94eb17c23df9ba182ab0fa72c70cf67fc0144e4dfb3ea0c8e29_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:15a5dc9571818879988dfdc824ee63fdde8b1e7eb60ea3a6a80e0f8d7e35f07c_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:99ee1439b65c10715d8c68db82d34c940b35d49333e75206342c4071ac6b7ea9_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:ac6657db103d21fe3087af65ac5db65674808c076108e7e72d44f446a6c06fde_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-mustgather-rhel9@sha256:f0eeb401ff9af1cf1a1ec7f675af1b971d333b1b9a060f733583a0505ef755d6_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1011b71da5144aa87b41fad553e2595d37b0c00e84f3f9ef2fc5bc297c6c23b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:1ef599161ea817eaa39ae9122badc5947fcbfa734deecb1c508d64f381f52a3e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:5ce37061b7f2425eb90d2eabdb7d677213ce1a3ac70ef9388ded3d4d5ac0b745_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-non-admin-rhel9@sha256:ffeacd359cf277418e33a260740e4cb51e1ee2bf5e4cc9da70940099653e2115_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-operator-bundle@sha256:71d4d68dca0037032b54a9a0cb297ef5510f8527645e15fec482d38bef97c88b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:2c744015aa83e60af29a0f9afaf79b8989e30fbe0691b355a4934cbba8d875c7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:4f65efff92d7ca27642d56953725a881b0f5ec7c9e1e93665d071db125be6e99_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:8eacd52ce856b89c38ac209d4fc66bd8c3d196c54de6ad055edc1a8d39d9744c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-rhel9-operator@sha256:f1b973faeb4b97b79f94cb0d694f73bc90ba0d253fefadfd2b6c0a7994529ae4_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:3f7a2d92d75b52a54a9a75eb336bb0b4f31e1ad0e9f269f18ebad4975b9872c1_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:7fd8a157a73564f926e0ca1c5076745451a5b2746a93f0991bba14a0c29f6d14_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:b3aacb1ba2bc094bb4eee59348a9ff057c74944cbbf9fc9ab52d09d54c137a8b_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel9@sha256:da0495c5e76fec75eb6106b8926ab50b56fd6aa4171c008a16550c54aa32244e_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:2c490d9d3c4d176d8d8a396626525536cdd37236f9be86e73bb647cac9d07845_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7dbbe65df390d71e5af07b55c1768ccb716200a43e4af4a4c5613f538cf402ed_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:7f7f67f8c6975ffd963434a51078bc22588badff0dbbbc338b5d0245a48e5ccf_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel9@sha256:c1e17277ad0857c83172bdda7f1d4ac583f85021306aa366c1bc1ac47ecd4f1a_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:39c9533ab8147da38dc1da75c842bdd9605c27e44e5bd6958216eb6c090aa2bc_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:765383ad0e9e62368e91b9ac4945d3f253f5cb5329bb531d725f34306e6ecad7_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:acb1707f8ad2165040856ff90282264e42f013cfead52cb5e2740eb471b884fc_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-legacy-aws-rhel9@sha256:b3da6df1cc941e1d2044429f1361fd5b37b108a8c2bf672296c37ac31d561bd8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:071c8c18a00c2762d439d3021888a21a63f326e62fa229ac2cb5be664bf23c48_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:1718e9188458574e6c33c73165d30078075fec0751044ef19affe99358f2960b_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:2b96f4912ed60316e9e914cc01ee7fd5af2293e22108c571cf0663e120a2e7d5_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel9@sha256:ffaccfe0ee5b0acd0d1f1a07da6fec010c4ecbb6521df6852f22428b7f005c16_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:39d8fef61373de14483aad9c4723a410d0de00ee59063f804a23104279661911_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:47ab49d1e7a2175b06b1e73c79f1b98dc55778adc0638b6a6eb36bed0e7343b8_arm64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:a7dac46731507954f181d2a1766cda4d973ea07127757e1527a4ece7a09d3c1c_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-plugin-rhel9@sha256:bc1f7b04f4860fa4a8136331f541e9dd8497a16357e5b428c7fcdcc50f1241ee_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:0baee9f43009c32438afaf4a2578c4bbe6f13d941ebfd584ad9223269ceed20b_ppc64le",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:99ce5ccdbbe48df5c5323d8660e2609f24da8fe998dee969f0d555dad08aae5e_s390x",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:c9c234723ce4f834fe75e89636aedc7afc488d717439639728ab82dfe73ec4f8_amd64",
"OpenShift API for Data Protection 1.5:registry.redhat.io/oadp/oadp-velero-rhel9@sha256:f05cab7b47366dd652982905e2d9a5d4abcd0e1a5a2561b0d078c20e889e14cb_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:26571
Vulnerability from csaf_redhat - Published: 2026-06-17 13:17 - Updated: 2026-07-14 05:25A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 | — |
Workaround
|
|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le | — |
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 | — | ||
| Unresolved product id: OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le | — |
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An updated OpenShift Compliance Operator image that fixes various bugs and adds new\nenhancements is now available for the Red Hat OpenShift Enterprise 4 catalog.",
"title": "Topic"
},
{
"category": "general",
"text": "The OpenShift Compliance Operator v1.9.1 is now available.\nSee the documentation for bug fix information:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/security_and_compliance/compliance-operator#compliance-operator-release-notes",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26571",
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32283",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26571.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Compliance Operator bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-07-14T05:25:04+00:00",
"generator": {
"date": "2026-07-14T05:25:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26571",
"initial_release_date": "2026-06-17T13:17:24+00:00",
"revision_history": [
{
"date": "2026-06-17T13:17:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-17T13:17:40+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:25:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "OpenShift Compliance Operator 1",
"product": {
"name": "OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_compliance_operator:1::el9"
}
}
}
],
"category": "product_family",
"name": "OpenShift Compliance Operator"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-operator-bundle@sha256%3Add5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be?arch=amd64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-operator-bundle\u0026tag=1781605005"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-content-rhel8@sha256%3A637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850?arch=amd64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-content-rhel8\u0026tag=1781599527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-must-gather-rhel8@sha256%3Ab4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8?arch=amd64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8\u0026tag=1781205733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-openscap-rhel8@sha256%3Ad2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71?arch=amd64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-openscap-rhel8\u0026tag=1781600013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-rhel8-operator@sha256%3Ae049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095?arch=amd64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-rhel8-operator\u0026tag=1781599863"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-content-rhel8@sha256%3A55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848?arch=arm64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-content-rhel8\u0026tag=1781599527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-must-gather-rhel8@sha256%3Acfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada?arch=arm64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8\u0026tag=1781205733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-openscap-rhel8@sha256%3A138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9?arch=arm64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-openscap-rhel8\u0026tag=1781600013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"product_id": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-rhel8-operator@sha256%3A7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47?arch=arm64\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-rhel8-operator\u0026tag=1781599863"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"product_id": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-content-rhel8@sha256%3A2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c?arch=ppc64le\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-content-rhel8\u0026tag=1781599527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"product_id": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-must-gather-rhel8@sha256%3A754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4?arch=ppc64le\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8\u0026tag=1781205733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"product_id": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-openscap-rhel8@sha256%3Acc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa?arch=ppc64le\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-openscap-rhel8\u0026tag=1781600013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le",
"product_id": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-rhel8-operator@sha256%3Aff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88?arch=ppc64le\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-rhel8-operator\u0026tag=1781599863"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"product_id": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-content-rhel8@sha256%3Ae111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3?arch=s390x\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-content-rhel8\u0026tag=1781599527"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"product_id": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-must-gather-rhel8@sha256%3A372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded?arch=s390x\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8\u0026tag=1781205733"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"product_id": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-openscap-rhel8@sha256%3Afc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a?arch=s390x\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-openscap-rhel8\u0026tag=1781600013"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"product": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"product_id": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"product_identification_helper": {
"purl": "pkg:oci/openshift-compliance-rhel8-operator@sha256%3A4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef?arch=s390x\u0026repository_url=registry.redhat.io/compliance/openshift-compliance-rhel8-operator\u0026tag=1781599863"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64 as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le as a component of OpenShift Compliance Operator 1",
"product_id": "OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
},
"product_reference": "registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le",
"relates_to_product_reference": "OpenShift Compliance Operator 1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"known_not_affected": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:17:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your\nsystem have been applied. For details on how to apply this update, refer to:\n \nhttps://docs.openshift.com/container-platform/latest/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"known_not_affected": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:17:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your\nsystem have been applied. For details on how to apply this update, refer to:\n \nhttps://docs.openshift.com/container-platform/latest/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"known_not_affected": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:17:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your\nsystem have been applied. For details on how to apply this update, refer to:\n \nhttps://docs.openshift.com/container-platform/latest/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"known_not_affected": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:17:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your\nsystem have been applied. For details on how to apply this update, refer to:\n \nhttps://docs.openshift.com/container-platform/latest/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"known_not_affected": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:17:24+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your\nsystem have been applied. For details on how to apply this update, refer to:\n \nhttps://docs.openshift.com/container-platform/latest/updating/updating_a_cluster/updating-cluster-cli.html",
"product_ids": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26571"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:2a0f0b93de03891816258421c4ed80e784edf101b504afec5f40f7de3f30f24c_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:55b062c25c2ac2db43aaba84d6f2385241d866aec42385271b1bda26f019d848_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:637b85ceff1e49c9c09bdbe8728afe90090b48948ad4c828d573d2b1375e7850_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-content-rhel8@sha256:e111b20260696447ae76f0c3d7bdbade3310b4819e8354ae48583f3ca91861e3_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:372578fd564128ed32a88e09594ba16a7ec3c061a8157c88abae757418ccaded_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:754211edf86bc9ddbf20deba2f2eb518f86747678843f0fc928ee675fcf720a4_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:b4712b2728c2807401a6f25a3e6b0e4aa5611e5d97b06979c65ea0fb722c57a8_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-must-gather-rhel8@sha256:cfb65df163b8c3870132a4a5568f982f1af966d0820e18e99adbfc4fa3ca6ada_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:138d6ba8e1b5a3745294e6eb46d23614bba97ab118a4c3689283afc314e7abb9_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:cc59d7a70c3fa544287c547c1e682bab494c38d6b7970740ab80f0aee4aa73aa_ppc64le",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:d2c692acac9c5c940b44cf0e101ed008ca87e54785983e3d926dbff197d55f71_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-openscap-rhel8@sha256:fc9341140942df8b2a3b4c4e6aad53e39359b7ea9323ab306fcf791b5713639a_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-operator-bundle@sha256:dd5ac6b523658a5d8a07c39e20b6538686d8680d16aec8ffb0c0568a586d34be_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:4b1711f8797d6fa769988788e57be4949e14a4c8ef2b0f771fb1bd9692e16bef_s390x",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:7b2ee5ad206e3927ebf154a90c07b9504b4bc9277555927319d8c802962fca47_arm64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:e049f9e0b136ff6a0fd940b74acfab5aa0b0b09981b64202e1bbcfe980da7095_amd64",
"OpenShift Compliance Operator 1:registry.redhat.io/compliance/openshift-compliance-rhel8-operator@sha256:ff3fe41e6e368a377103afdb386ecb86107d2091439309927b4f5c19af793a88_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
}
]
}
RHSA-2026:26585
Vulnerability from csaf_redhat - Published: 2026-06-17 13:40 - Updated: 2026-07-14 05:57The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
Workaround
|
A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
Workaround
|
A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — | ||
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 | — |
Workaround
|
|
| Unresolved product id: Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Logging for Red Hat OpenShift - 6.0.15",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Logging 6.0.15 is a cluster-wide logging solution for OpenShift that collects and manages applications, infrastructure, and audit logs.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26585",
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33810",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-27137",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26585.json"
}
],
"title": "Red Hat Security Advisory: Logging for Red Hat OpenShift - 6.0.15",
"tracking": {
"current_release_date": "2026-07-14T05:57:00+00:00",
"generator": {
"date": "2026-07-14T05:57:00+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26585",
"initial_release_date": "2026-06-17T13:40:23+00:00",
"revision_history": [
{
"date": "2026-06-17T13:40:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-17T13:40:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:57:00+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Logging Subsystem for Red Hat OpenShift 6.0",
"product": {
"name": "Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:logging:6.0::el9"
}
}
}
],
"category": "product_family",
"name": "Logging Subsystem for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=1781192926"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-operator-bundle@sha256%3A6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-operator-bundle\u0026tag=1781196145"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3A8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=1781192891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3Ad35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=1781192874"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=1781193075"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=1781192924"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"product_id": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"product_identification_helper": {
"purl": "pkg:oci/loki-operator-bundle@sha256%3A36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/loki-operator-bundle\u0026tag=1781196156"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=1781192909"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Abbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=1781192910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6?arch=amd64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=1781193225"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=1781192926"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3A9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=1781192891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=1781192874"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=1781193075"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3Af635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=1781192924"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3A1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=1781192909"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Af0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=1781192910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34?arch=arm64\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=1781193225"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3A82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=1781192926"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3Aa13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=1781192891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=1781192874"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=1781193075"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=1781192924"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Aee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=1781192909"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Ace9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=1781192910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3Ae80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2?arch=s390x\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=1781193225"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cluster-logging-rhel9-operator@sha256%3Ab166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator\u0026tag=1781192926"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventrouter-rhel9@sha256%3Ad591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/eventrouter-rhel9\u0026tag=1781192891"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/log-file-metric-exporter-rhel9@sha256%3A12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9\u0026tag=1781192874"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logging-loki-rhel9@sha256%3A350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/logging-loki-rhel9\u0026tag=1781193075"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/loki-rhel9-operator@sha256%3A0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/loki-rhel9-operator\u0026tag=1781192924"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/lokistack-gateway-rhel9@sha256%3Aae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/lokistack-gateway-rhel9\u0026tag=1781192909"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opa-openshift-rhel9@sha256%3Af75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/opa-openshift-rhel9\u0026tag=1781192910"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"product_id": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/vector-rhel9@sha256%3A732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-logging/vector-rhel9\u0026tag=1781193225"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64 as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x as a component of Logging Subsystem for Red Hat OpenShift 6.0",
"product_id": "Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
},
"product_reference": "registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x",
"relates_to_product_reference": "Logging Subsystem for Red Hat OpenShift 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-27137",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-03-06T22:01:38.859733+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445345"
}
],
"notes": [
{
"category": "description",
"text": "A certificate validation flaw has been discovered in the golang crypto/x509 module. When verifying a certificate chain which contains a certificate containing multiple email address constraints which share common local portions but different domain portions, these constraints will not be properly applied, and only the last constraint will be considered.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-27137"
},
{
"category": "external",
"summary": "RHBZ#2445345",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445345"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-27137",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-27137"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-27137"
},
{
"category": "external",
"summary": "https://go.dev/cl/752182",
"url": "https://go.dev/cl/752182"
},
{
"category": "external",
"summary": "https://go.dev/issue/77952",
"url": "https://go.dev/issue/77952"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4599",
"url": "https://pkg.go.dev/vuln/GO-2026-4599"
}
],
"release_date": "2026-03-06T21:28:13.748000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: Incorrect enforcement of email constraints in crypto/x509"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-33810",
"cwe": {
"id": "CWE-1289",
"name": "Improper Validation of Unsafe Equivalence in Input"
},
"discovery_date": "2026-04-08T02:01:09.100830+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456335"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/x509` package within Go (golang). When verifying a certificate chain, excluded DNS (Domain Name System) constraints are not correctly applied to wildcard DNS Subject Alternative Names (SANs) if the case of the SAN differs from the constraint. This oversight could allow an attacker to bypass certificate validation, potentially leading to the acceptance of a malicious certificate that should have been rejected. This issue specifically impacts the validation of trusted certificate chains.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important flaw in the Go `crypto/x509` package that could allow an attacker to bypass certificate validation. The vulnerability arises from an incorrect application of excluded DNS constraints to wildcard DNS Subject Alternative Names (SANs) when their case differs from the constraint. This could lead to Red Hat products accepting malicious certificates from otherwise trusted chains, compromising the trust model.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33810"
},
{
"category": "external",
"summary": "RHBZ#2456335",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456335"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33810",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33810"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33810"
},
{
"category": "external",
"summary": "https://go.dev/cl/763763",
"url": "https://go.dev/cl/763763"
},
{
"category": "external",
"summary": "https://go.dev/issue/78332",
"url": "https://go.dev/issue/78332"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4866",
"url": "https://pkg.go.dev/vuln/GO-2026-4866"
}
],
"release_date": "2026-04-08T01:06:56.546000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:L",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Certificate validation bypass due to incorrect DNS constraint application"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x"
],
"known_not_affected": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T13:40:23+00:00",
"details": "For OpenShift Container Platform 4.16 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.16/html/release_notes/ocp-4-16-release-notes\n\nFor Red Hat OpenShift Logging 6.0, see the following instructions to apply this update:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_logging/6.0",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26585"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-operator-bundle@sha256:6f4dbc7f3632ae47eb17aa2ce9e336e6e7710ac1fbfcb4c894012a98819b78ca_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:56fa9c22636ebd58eb0fdfcb85895913b9d06c5c0497603a3beff5e5bebf9eb9_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:7d3c7fea6ca43095f8b4bd8cd6e7e5aea6aa2d910a0a65f4491bfb3aac0256da_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:82a08bc9410eaa8f27ab05aff287763e2e70611fb8cac4aedb2c864cb1ee44cb_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/cluster-logging-rhel9-operator@sha256:b166bced3166496816f40414c18d281e5628b17d151b588ec922e92c9e63f3c7_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:8395c91f0f78efd970aa266afbfd507a2f811fa77b0f110e417371f217f485b0_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:9049f1ba021aa03467478e05352c39ed1aa1289e88617d2ba7e6a9c1baa05b30_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:a13d9dd8d1bb24802e3c126e3d2f9f2f2f198d663c0946d53da3e7cf6e5e6594_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/eventrouter-rhel9@sha256:d591290a85cc270295de4ebcedf7b0f4c5007f51a22d2a6367e69add9c7249d6_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:12eb0a87d3da10cf10cd734d031000b5aba503d243ba8bcdfe12a7e6d775c350_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:3a280f9e6d1b301e829de78b22b5a9ac93f02818327d873f300da055628c966c_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:9c5897a18b1a166ae26c17db401bc958cdc7a4a69adc4a0ff814b372ad2a3f93_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/log-file-metric-exporter-rhel9@sha256:d35ece1b60c6649b54534c9b11fea3b53f3a4e742a2ade0a07e6a28307414ed8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:350f5c0350d2e3735209797b55586300278474b085fd8de797603851d74252fa_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:66c870df2255862b975babe3fca6dee83b948db90b0f739ed3ee002b7fcfb90b_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:8f3b6f87de69f0cbf60fcf7b07a115c925284c2ed95e438694e6d5282e518be2_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/logging-loki-rhel9@sha256:9f95efc1f2d811a2ce855ee1387977f50548472f3bc08b46d814b65ba398ccaf_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-operator-bundle@sha256:36742ce39ffd92b07cf02a7f51ade042862320d4b0beee09f6f0a71a23d1e724_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:0813ad39035209eac48727d10da0770d5d0e0fe94f84ed8ed0a7cb946fd5085a_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:69a9234a530751f1e7e34bfb21a8a79b7e3db6a7902722486f72b85bfc7b8cc3_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:7c561f6ea0662b5a7bde51ff65019c128b65bfefe3f1388e23669a6ffd130c9f_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/loki-rhel9-operator@sha256:f635ba63420aca986bd1f6a057b778c49957f26342df18849ff4b99fd318ac9f_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:1af5b63614997f6be796b2774d2031ebc3404d68440460f0edd9ecb7024e5a8d_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:54790ceaf3aa3bf15641c4ce1a0b8a5c0bea597e15e240cdf1c2d3715cd819e8_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ae2bb75f3c8e3c42cb22622114c63a67fc98a844bf10b313afed13afa7b3297d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/lokistack-gateway-rhel9@sha256:ee7c050cbd350c8ed01594fd3c7662c361b16a23ad6ef54ad1aefae7788729a8_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:bbe422b9d9e942072164a42c4ab57053867bc62cba0ddf53f7e7eac56ef53cd7_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:ce9658374396ecd1c9921e4ec4bd33eede25bb83568e0b401b6f9d1a053f58e4_s390x",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f0a4742ef2ba98180910b76006c356e77325d8f12741459db4f065835aad2d2a_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/opa-openshift-rhel9@sha256:f75b0b4ee4721d4424ece1becab440719c30f9385d3abd67cc2c75e7b56f0c7f_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:0e33e09065da575886194b76f1bd46cf1a435e036db6fc9511e8ff2ee27b8bc6_amd64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:732875c0ed445bb2708e870d3f561d6dc5a36c80cc42ebf63f4c30ae7674396d_ppc64le",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:80bf91b17c814c4bc5b8ddcb0aaeb252089067e7d0590d00afbaa175f5500e34_arm64",
"Logging Subsystem for Red Hat OpenShift 6.0:registry.redhat.io/openshift-logging/vector-rhel9@sha256:e80901561adb7ba09db77b3cc8aa7a754ce078370ef0507064fee60ff448d3d2_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:26636
Vulnerability from csaf_redhat - Published: 2026-06-17 15:22 - Updated: 2026-07-14 05:57A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — | ||
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x | — |
Workaround
|
|
| Unresolved product id: Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Custom Metrics Autoscaler Operator for Red Hat OpenShift updates.\n\nThe following updates for the Custom Metric Autoscaler operator for Red Hat\nOpenShift are now available:\n\n* custom-metrics-autoscaler-adapter-container\n* custom-metrics-autoscaler-admission-webhooks-container\n* custom-metrics-autoscaler-container\n* custom-metrics-autoscaler-operator-bundle-container\n* custom-metrics-autoscaler-operator-container\n* custom-metrics-autoscaler-http-add-on-interceptor-container\n* custom-metrics-autoscaler-http-add-on-operator-container\n* custom-metrics-autoscaler-http-add-on-scaler-container",
"title": "Topic"
},
{
"category": "general",
"text": "The Custom Metrics Autoscaler Operator for Red Hat OpenShift is an optional operator, based on the Kubernetes Event Driven Autoscaler (KEDA), which allows workloads to be scaled using additional metrics sources other than pod metrics.\nThis release is based upon KEDA 2.19.0",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:26636",
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61726",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61728",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-61729",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-68121",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-25679",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32280",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32282",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32283",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33815",
"url": "https://access.redhat.com/security/cve/CVE-2026-33815"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-33816",
"url": "https://access.redhat.com/security/cve/CVE-2026-33816"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-34986",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_26636.json"
}
],
"title": "Red Hat Security Advisory: Custom Metrics Autoscaler Operator for Red Hat OpenShift 2.19.0-1 Update",
"tracking": {
"current_release_date": "2026-07-14T05:57:01+00:00",
"generator": {
"date": "2026-07-14T05:57:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:26636",
"initial_release_date": "2026-06-17T15:22:46+00:00",
"revision_history": [
{
"date": "2026-06-17T15:22:46+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-17T15:22:55+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:57:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Custom Metric Autoscaler 2.19",
"product": {
"name": "Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_custom_metrics_autoscaler:2.19::el9"
}
}
}
],
"category": "product_family",
"name": "Custom Metric Autoscaler"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9-operator@sha256%3A364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator\u0026tag=1779953535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-operator-bundle@sha256%3A6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle\u0026tag=1780104005"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256%3A46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9\u0026tag=1780088012"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256%3A8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9\u0026tag=1780088020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256%3A68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9\u0026tag=1780088006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-adapter-rhel9@sha256%3A203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9\u0026tag=1780101236"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9@sha256%3Acfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9\u0026tag=1780101239"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256%3A2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8?arch=amd64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9\u0026tag=1780101226"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9-operator@sha256%3A09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator\u0026tag=1779953535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256%3A76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9\u0026tag=1780088012"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256%3Ab8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9\u0026tag=1780088020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256%3A4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9\u0026tag=1780088006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-adapter-rhel9@sha256%3A5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9\u0026tag=1780101236"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9@sha256%3A54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9\u0026tag=1780101239"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256%3A0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376?arch=arm64\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9\u0026tag=1780101226"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9-operator@sha256%3A475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator\u0026tag=1779953535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256%3A1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9\u0026tag=1780088012"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256%3A9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9\u0026tag=1780088020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256%3A4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9\u0026tag=1780088006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-adapter-rhel9@sha256%3Aafea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9\u0026tag=1780101236"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9@sha256%3A0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9\u0026tag=1780101239"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256%3Afef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9?arch=ppc64le\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9\u0026tag=1780101226"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9-operator@sha256%3A53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator\u0026tag=1779953535"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256%3Aa52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9\u0026tag=1780088012"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256%3A1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9\u0026tag=1780088020"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256%3A71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9\u0026tag=1780088006"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-adapter-rhel9@sha256%3Afa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9\u0026tag=1780101236"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-rhel9@sha256%3Ab875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9\u0026tag=1780101239"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"product": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"product_id": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256%3Acff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7?arch=s390x\u0026repository_url=registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9\u0026tag=1780101226"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64 as a component of Custom Metric Autoscaler 2.19",
"product_id": "Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
},
"product_reference": "registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64",
"relates_to_product_reference": "Custom Metric Autoscaler 2.19"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61726",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:42.791305+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434432"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net/url package in the Go standard library. The package does not enforce a limit on the number of unique query parameters it parses. A Go application using the net/http.Request.ParseForm method will try to process all parameters provided in the request. A specially crafted HTTP request containing a massive number of query parameters will cause the application to consume an excessive amount of memory, eventually causing the application to crash or become unresponsive, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/url: Memory exhaustion in query parameter parsing in net/url",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker must be able to send a specially crafted HTTP request to an application parsing URL-encoded forms with net/url, specifically a request containing a large number of unique query parameters. The request will cause the application to consume an excessive amount of memory and eventually result in a denial of service, with no impact to confidentiality or integrity. Due to this reason, this vulnerability has been rated with an important severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61726"
},
{
"category": "external",
"summary": "RHBZ#2434432",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434432"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61726",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61726"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61726"
},
{
"category": "external",
"summary": "https://go.dev/cl/736712",
"url": "https://go.dev/cl/736712"
},
{
"category": "external",
"summary": "https://go.dev/issue/77101",
"url": "https://go.dev/issue/77101"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4341",
"url": "https://pkg.go.dev/vuln/GO-2026-4341"
}
],
"release_date": "2026-01-28T19:30:31.215000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/url: Memory exhaustion in query parameter parsing in net/url"
},
{
"cve": "CVE-2025-61728",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-01-28T20:01:39.965024+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2434431"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the archive/zip package in the Go standard library. A super-linear file name indexing algorithm is used in the first time a file in an archive is opened. A crafted zip archive containing a specific arrangement of file names can cause an excessive CPU and memory consumption. A Go application processing a malicious archive can become unresponsive or crash, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, an attacker needs to be able to process a malicious zip archive with an application using the archive/zip package. Additionally, this vulnerability can cause a Go application to consume an excessive amount of CPU and memory, eventually resulting in a denial of service with no other security impact. Due to these reasons, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61728"
},
{
"category": "external",
"summary": "RHBZ#2434431",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2434431"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61728"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61728"
},
{
"category": "external",
"summary": "https://go.dev/cl/736713",
"url": "https://go.dev/cl/736713"
},
{
"category": "external",
"summary": "https://go.dev/issue/77102",
"url": "https://go.dev/issue/77102"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc",
"url": "https://groups.google.com/g/golang-announce/c/Vd2tYVM8eUc"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4342",
"url": "https://pkg.go.dev/vuln/GO-2026-4342"
}
],
"release_date": "2026-01-28T19:30:31.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "To mitigate this vulnerability, implement a timeout in your archive/zip processing logic to abort the operation if it exceeds a few seconds, preventing the application from consuming an excessive amount of resources.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Excessive CPU consumption when building archive index in archive/zip"
},
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2025-68121",
"discovery_date": "2026-02-05T18:01:30.086058+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2437111"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the crypto/tls component. This vulnerability occurs during Transport Layer Security (TLS) session resumption when certificate authority (CA) settings are modified between the initial and resumed handshakes. An attacker could exploit this to bypass certificate validation, allowing a client or server to establish a connection that should have been rejected. This could lead to an authentication bypass under specific conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is a moderate flaw because it only occurs under specific conditions, such as TLS session resumption with runtime changes to certificate authority settings. Exploitation is not straightforward and requires a controlled setup. The impact is limited to certificate validation within the same component and does not affect system availability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-68121"
},
{
"category": "external",
"summary": "RHBZ#2437111",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2437111"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-68121",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-68121"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-68121"
},
{
"category": "external",
"summary": "https://go.dev/cl/737700",
"url": "https://go.dev/cl/737700"
},
{
"category": "external",
"summary": "https://go.dev/issue/77217",
"url": "https://go.dev/issue/77217"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk",
"url": "https://groups.google.com/g/golang-announce/c/K09ubi9FQFk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4337",
"url": "https://pkg.go.dev/vuln/GO-2026-4337"
}
],
"release_date": "2026-02-05T17:48:44.141000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/tls: crypto/tls: Incorrect certificate validation during TLS session resumption"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33815",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:25.130006+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455975"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx. This memory-safety vulnerability could potentially lead to unexpected behavior or system instability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33815"
},
{
"category": "external",
"summary": "RHBZ#2455975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455975"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33815",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33815"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33815"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4771",
"url": "https://pkg.go.dev/vuln/GO-2026-4771"
}
],
"release_date": "2026-04-07T15:19:24.344000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-33816",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"discovery_date": "2026-04-07T16:01:14.142946+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455972"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in github.com/jackc/pgx, a PostgreSQL driver for Go. This memory-safety vulnerability could allow an attacker to cause various impacts, such as denial of service (DoS) or potentially arbitrary code execution, by exploiting memory corruption issues. The exact method of exploitation and specific consequences would depend on the nature of the memory corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33816"
},
{
"category": "external",
"summary": "RHBZ#2455972",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455972"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33816",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33816"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33816"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4772",
"url": "https://pkg.go.dev/vuln/GO-2026-4772"
}
],
"release_date": "2026-04-07T15:19:24.529000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/jackc/pgx/v5: github.com/jackc/pgx: Memory-safety vulnerability"
},
{
"cve": "CVE-2026-34986",
"cwe": {
"id": "CWE-131",
"name": "Incorrect Calculation of Buffer Size"
},
"discovery_date": "2026-04-06T17:01:34.639203+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2455470"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go JOSE, a library for handling JSON Web Encryption (JWE) objects. A remote attacker could exploit this vulnerability by providing a specially crafted JWE object. When decrypting such an object, if a key wrapping algorithm is specified but the encrypted key field is empty, the application can crash. This leads to a denial of service (DoS), making the affected service unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"known_not_affected": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "RHBZ#2455470",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2455470"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-34986",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-34986"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-34986"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-78h2-9frx-2jm8"
},
{
"category": "external",
"summary": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants",
"url": "https://pkg.go.dev/github.com/go-jose/go-jose/v4#pkg-constants"
}
],
"release_date": "2026-04-06T16:22:45.353000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-17T15:22:46+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\nFor details on how to apply this update, refer to:\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:26636"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:203e064cac29d057717448aea2282faeedf01001c53b613513a2a7c2bc1dc821_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:5f4d6fed84be863e1962eda68910d84a8501fffd8a04fe4506666a0e82fd5ed1_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:afea6445ec7abb46fe47cd62ac037803889fc45d1fff068d444f2f0ea977795f_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-adapter-rhel9@sha256:fa63696a69c94780f412bca7704716653cc801d1acfd50d5874b9a596ca498b4_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:0ebb907c42d8616b16f7ab34dde6f903396c9542447f86e9ac1134bd2809f376_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:2fb11102cf802c65fc7f02e65ffe39235174261acd40ef643aa283bc9f413da8_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:cff2cc97baf0fdc548aa8c8e71e379d3414bf59ab07a3850a73495a07e2676d7_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-admission-webhooks-rhel9@sha256:fef28d3c1c71923a4ca4845360e30d6ce10049e0cbf17aee7c6936e8577586a9_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:1e36af903bff954a9cd4c7df4b39e4e608cbbceec209de779ac3a330c7297d9a_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:46c5f3ea8bf9b9e46d57510ef38759f9e4ef7346299a0757d0253d38bb94670f_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:76b6f3115f75683c4e667ff7e97e6ff763a20f8d208126e1c578929ee691423b_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-interceptor-rhel9@sha256:a52f8f6b446d0a2037fd576a05438a2dcc0b6a9236f8d3492a2107aab4474bf6_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:1e3451cf5047a4c46a88022aeb58ce5cd939c2653b7ece3a4f588d6fac98b97d_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:8a3ff37bf8531c90e730f5a95a66006ec3a6e500e2d8e9594d1bf5b7eb47ee81_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:9a04175e4f015a63636055ef25c1979cebbd3fab0da1a605c9440f5949f470ef_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-operator-rhel9@sha256:b8db747e81a9c6f910b1a7eeaf1fbfd0409caf614bc6ddf60085c0f2a785e0b2_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4766579573cc93a09e419e3db97cc6bcdef2fe5e636a2f61827b65c72be43567_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:4bd8487f5cb845237b4d82a8e47be093f5784a79ebdec2a941846fdd996c29b4_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:68cc28bec85f0bcfeda1f97fb05fe5c4b3b0cf2b894136b326077b900ee2baf2_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-http-add-on-scaler-rhel9@sha256:71db2331e64153d5c74139dd903851b4c938fd47fa2d109192a20e29464d5298_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-operator-bundle@sha256:6b3c99042b4e92421149a1abff73e72f7e27d8b54f9cb437bad1adcb522b0a02_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:09d84c608ca161199eebf7b33f00d9cba7f843e8f07f7496d991c525f5667952_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:364c3fa02a182247e175740bd7699b946f32329c8ea8ae5ea21ae0ccc516cabb_amd64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:475c79f752cd0edd372c4835ebf9507b0dfb1693ffbe4b114a661908a53c02e4_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9-operator@sha256:53727f920105c3184ba25a77ad861a29413bc16368f5a432f6e2feaa4c30f379_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:0babd8144a4ec880feb3a51043804bffadb261e46f318728c7878bcb8169628e_ppc64le",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:54b6bdae6abb33e94d6ec8e236cc25e5e775d61557c9ce349b0376e5380d2859_arm64",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:b875d8b089d99631e2e956f5fff58a3028545c6c7501591ce39fca45f33e62ff_s390x",
"Custom Metric Autoscaler 2.19:registry.redhat.io/custom-metrics-autoscaler/custom-metrics-autoscaler-rhel9@sha256:cfecbaa68944d1ed40c0dab27b1a034ba429badf9572cc367a34f2c1b7ebb1b4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "github.com/go-jose/go-jose/v3: github.com/go-jose/go-jose/v4: Go JOSE: Denial of Service via crafted JSON Web Encryption (JWE) object"
}
]
}
RHSA-2026:27076
Vulnerability from csaf_redhat - Published: 2026-06-18 17:24 - Updated: 2026-07-14 05:25A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
Workaround
|
A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
Workaround
|
A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
Workaround
|
A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — | ||
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — | ||
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
Workaround
|
A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library's failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src | — |
Workaround
|
|
| Unresolved product id: 8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src | — |
Workaround
|
|
| Unresolved product id: 9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Satellite 6.16 for RHEL 8 and RHEL 9.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Satellite is a system management solution that allows organizations\nto configure and maintain their systems without the necessity to provide\npublic Internet access to their servers or other client systems. It\nperforms provisioning and configuration management of predefined standard\noperating environments.\n\nSecurity Fix(es):\n\n* python-pillow: Pillow: Denial of Service via decompression bomb in FITS image processing (CVE-2026-40192)\n\n* yggdrasil-worker-forwarder: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* dynflow-utils: Root.Chmod can follow symlinks out of the root (CVE-2026-32282)\n\n* satellite:el8/yggdrasil-worker-forwarder: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* yggdrasil-worker-forwarder: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation (CVE-2026-33186)\n\n* yggdrasil-worker-forwarder: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* satellite:el8/yggdrasil-worker-forwarder: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)\n\n* satellite:el8/yggdrasil-worker-forwarder: golang: Denial of Service due to excessive resource consumption via crafted certificate (CVE-2025-61729)\n\n* satellite:el8/yggdrasil-worker-forwarder: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* yggdrasil-worker-forwarder: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages (CVE-2026-32283)\n\n* yggdrasil-worker-forwarder: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* satellite:el8/yggdrasil-worker-forwarder: Go: Denial of Service vulnerability in certificate chain building (CVE-2026-32280)\n\n* satellite:el8/yggdrasil-worker-forwarder: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\n* yggdrasil-worker-forwarder: Go crypto/x509: Denial of Service via inefficient certificate chain validation (CVE-2026-32281)\n\nBug Fix(es):\n\n* orphan cleanup triggers CapsuleContent::UpdateContentCounts regardless of automatic_content_count_updates setting (SAT-45906)\n\n* The custom repository fails to sync with the Capsule server, resulting in an error (SAT-44720)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:27076",
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "2458856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458856"
},
{
"category": "external",
"summary": "SAT-44720",
"url": "https://issues.redhat.com/browse/SAT-44720"
},
{
"category": "external",
"summary": "SAT-45906",
"url": "https://issues.redhat.com/browse/SAT-45906"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27076.json"
}
],
"title": "Red Hat Security Advisory: Satellite 6.16.9 Async Update",
"tracking": {
"current_release_date": "2026-07-14T05:25:08+00:00",
"generator": {
"date": "2026-07-14T05:25:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:27076",
"initial_release_date": "2026-06-18T17:24:02+00:00",
"revision_history": [
{
"date": "2026-06-18T17:24:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-18T17:24:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-14T05:25:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.16::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.16::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-maintenance",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_maintenance:6.16::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.16::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite:6.16::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_capsule:6.16::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-maintenance",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_maintenance:6.16::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product": {
"name": "Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-utils",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:satellite_utils:6.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Satellite 6"
},
{
"branches": [
{
"category": "product_version",
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.src",
"product": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.src",
"product_id": "dynflow-utils-0:1.6.3-1.1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dynflow-utils@1.6.3-1.1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pillow-0:12.2.0-1.el8pc.src",
"product": {
"name": "python-pillow-0:12.2.0-1.el8pc.src",
"product_id": "python-pillow-0:12.2.0-1.el8pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pillow@12.2.0-1.el8pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pulp-ansible-1:0.21.10-4.el8pc.src",
"product": {
"name": "python-pulp-ansible-1:0.21.10-4.el8pc.src",
"product_id": "python-pulp-ansible-1:0.21.10-4.el8pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp-ansible@0.21.10-4.el8pc?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python-pulp-rpm-0:3.26.8-1.el8pc.src",
"product": {
"name": "python-pulp-rpm-0:3.26.8-1.el8pc.src",
"product_id": "python-pulp-rpm-0:3.26.8-1.el8pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp-rpm@3.26.8-1.el8pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"product": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"product_id": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.7.14-1.el8sat?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.src",
"product": {
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.src",
"product_id": "rubygem-katello-0:4.14.0.20-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.14.0.20-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.16.9-1.el8sat.src",
"product": {
"name": "satellite-0:6.16.9-1.el8sat.src",
"product_id": "satellite-0:6.16.9-1.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.16.9-1.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.src",
"product": {
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.src",
"product_id": "satellite-lifecycle-0:6.16.0-3.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.16.0-3.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el8sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.src",
"product": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.src",
"product_id": "dynflow-utils-0:1.6.3-1.1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dynflow-utils@1.6.3-1.1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pillow-0:12.2.0-1.el9pc.src",
"product": {
"name": "python-pillow-0:12.2.0-1.el9pc.src",
"product_id": "python-pillow-0:12.2.0-1.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pillow@12.2.0-1.el9pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-pulp-ansible-1:0.21.10-4.el9pc.src",
"product": {
"name": "python-pulp-ansible-1:0.21.10-4.el9pc.src",
"product_id": "python-pulp-ansible-1:0.21.10-4.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp-ansible@0.21.10-4.el9pc?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python-pulp-rpm-0:3.26.8-1.el9pc.src",
"product": {
"name": "python-pulp-rpm-0:3.26.8-1.el9pc.src",
"product_id": "python-pulp-rpm-0:3.26.8-1.el9pc.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pulp-rpm@3.26.8-1.el9pc?arch=src"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"product": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"product_id": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.7.14-1.el9sat?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.src",
"product": {
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.src",
"product_id": "rubygem-katello-0:4.14.0.20-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.14.0.20-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.16.9-1.el9sat.src",
"product": {
"name": "satellite-0:6.16.9-1.el9sat.src",
"product_id": "satellite-0:6.16.9-1.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.16.9-1.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.src",
"product": {
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.src",
"product_id": "satellite-lifecycle-0:6.16.0-3.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.16.0-3.el9sat?arch=src"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el9sat?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"product": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"product_id": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dynflow-utils@1.6.3-1.1.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"product": {
"name": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"product_id": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pillow@12.2.0-1.el8pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"product": {
"name": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"product_id": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pillow-debugsource@12.2.0-1.el8pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"product": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"product_id": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pillow-debuginfo@12.2.0-1.el8pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el8sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"product": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"product_id": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dynflow-utils@1.6.3-1.1.el9sat?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"product_id": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pillow@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product_id": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-pillow-debugsource@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product_id": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pillow-debuginfo@12.2.0-1.el9pc?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product_id": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-5.el9sat?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"product": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"product_id": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulp-ansible@0.21.10-4.el8pc?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"product": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"product_id": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulp-rpm@3.26.8-1.el8pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"product": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"product_id": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.7.14-1.el8sat?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"product": {
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"product_id": "rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.14.0.20-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.16.9-1.el8sat.noarch",
"product": {
"name": "satellite-capsule-0:6.16.9-1.el8sat.noarch",
"product_id": "satellite-capsule-0:6.16.9-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.16.9-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.16.9-1.el8sat.noarch",
"product": {
"name": "satellite-common-0:6.16.9-1.el8sat.noarch",
"product_id": "satellite-common-0:6.16.9-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.16.9-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.16.9-1.el8sat.noarch",
"product": {
"name": "satellite-0:6.16.9-1.el8sat.noarch",
"product_id": "satellite-0:6.16.9-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.16.9-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.16.9-1.el8sat.noarch",
"product": {
"name": "satellite-cli-0:6.16.9-1.el8sat.noarch",
"product_id": "satellite-cli-0:6.16.9-1.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.16.9-1.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"product": {
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"product_id": "satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.16.0-3.el8sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"product": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"product_id": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulp-ansible@0.21.10-4.el9pc?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"product": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"product_id": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3.11-pulp-rpm@3.26.8-1.el9pc?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"product": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"product_id": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.7.14-1.el9sat?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"product": {
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"product_id": "rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rubygem-katello@4.14.0.20-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-capsule-0:6.16.9-1.el9sat.noarch",
"product": {
"name": "satellite-capsule-0:6.16.9-1.el9sat.noarch",
"product_id": "satellite-capsule-0:6.16.9-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-capsule@6.16.9-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-common-0:6.16.9-1.el9sat.noarch",
"product": {
"name": "satellite-common-0:6.16.9-1.el9sat.noarch",
"product_id": "satellite-common-0:6.16.9-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-common@6.16.9-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-0:6.16.9-1.el9sat.noarch",
"product": {
"name": "satellite-0:6.16.9-1.el9sat.noarch",
"product_id": "satellite-0:6.16.9-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite@6.16.9-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-cli-0:6.16.9-1.el9sat.noarch",
"product": {
"name": "satellite-cli-0:6.16.9-1.el9sat.noarch",
"product_id": "satellite-cli-0:6.16.9-1.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-cli@6.16.9-1.el9sat?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"product": {
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"product_id": "satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/satellite-lifecycle@6.16.0-3.el9sat?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-0:12.2.0-1.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src"
},
"product_reference": "python-pillow-0:12.2.0-1.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-ansible-1:0.21.10-4.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src"
},
"product_reference": "python-pulp-ansible-1:0.21.10-4.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-rpm-0:3.26.8-1.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src"
},
"product_reference": "python-pulp-rpm-0:3.26.8-1.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch"
},
"product_reference": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch"
},
"product_reference": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-capsule-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-0:12.2.0-1.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src"
},
"product_reference": "python-pillow-0:12.2.0-1.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-ansible-1:0.21.10-4.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src"
},
"product_reference": "python-pulp-ansible-1:0.21.10-4.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-rpm-0:3.26.8-1.el8pc.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src"
},
"product_reference": "python-pulp-rpm-0:3.26.8-1.el8pc.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64"
},
"product_reference": "python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch"
},
"product_reference": "python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch"
},
"product_reference": "python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch"
},
"product_reference": "rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.14.0.20-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src"
},
"product_reference": "rubygem-katello-0:4.14.0.20-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-cli-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.16.9-1.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch"
},
"product_reference": "satellite-common-0:6.16.9-1.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch"
},
"product_reference": "satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.16.0-3.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src"
},
"product_reference": "satellite-lifecycle-0:6.16.0-3.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 8",
"product_id": "8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"relates_to_product_reference": "8Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-0:12.2.0-1.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src"
},
"product_reference": "python-pillow-0:12.2.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-ansible-1:0.21.10-4.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src"
},
"product_reference": "python-pulp-ansible-1:0.21.10-4.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-rpm-0:3.26.8-1.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src"
},
"product_reference": "python-pulp-rpm-0:3.26.8-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch"
},
"product_reference": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch"
},
"product_reference": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-capsule-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-capsule-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-common-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-capsule"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16-maintenance"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-cli-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16-utils"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64"
},
"product_reference": "dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-0:12.2.0-1.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src"
},
"product_reference": "python-pillow-0:12.2.0-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-ansible-1:0.21.10-4.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src"
},
"product_reference": "python-pulp-ansible-1:0.21.10-4.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-pulp-rpm-0:3.26.8-1.el9pc.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src"
},
"product_reference": "python-pulp-rpm-0:3.26.8-1.el9pc.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
},
"product_reference": "python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch"
},
"product_reference": "python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch"
},
"product_reference": "python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src"
},
"product_reference": "rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch"
},
"product_reference": "rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rubygem-katello-0:4.14.0.20-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src"
},
"product_reference": "rubygem-katello-0:4.14.0.20-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-0:6.16.9-1.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src"
},
"product_reference": "satellite-0:6.16.9-1.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-cli-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-cli-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-common-0:6.16.9-1.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch"
},
"product_reference": "satellite-common-0:6.16.9-1.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.noarch as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch"
},
"product_reference": "satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "satellite-lifecycle-0:6.16.0-3.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
},
"product_reference": "satellite-lifecycle-0:6.16.0-3.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"relates_to_product_reference": "9Base-satellite-6.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64 as a component of Red Hat Satellite 6.16 for RHEL 9",
"product_id": "9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
},
"product_reference": "yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64",
"relates_to_product_reference": "9Base-satellite-6.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-61729",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2025-12-02T20:01:45.330964+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2418462"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A remote attacker could exploit this vulnerability by providing a specially crafted certificate during the error string construction process within the `HostnameError.Error()` function. This flaw, caused by unbounded string concatenation, leads to excessive resource consumption. Successful exploitation can result in a denial of service (DoS) for the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-61729"
},
{
"category": "external",
"summary": "RHBZ#2418462",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2418462"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-61729",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-61729"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-61729"
},
{
"category": "external",
"summary": "https://go.dev/cl/725920",
"url": "https://go.dev/cl/725920"
},
{
"category": "external",
"summary": "https://go.dev/issue/76445",
"url": "https://go.dev/issue/76445"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4",
"url": "https://groups.google.com/g/golang-announce/c/8FJoBkPddm4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2025-4155",
"url": "https://pkg.go.dev/vuln/GO-2025-4155"
}
],
"release_date": "2025-12-02T18:54:10.166000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate"
},
{
"cve": "CVE-2026-25679",
"cwe": {
"id": "CWE-1286",
"name": "Improper Validation of Syntactic Correctness of Input"
},
"discovery_date": "2026-03-06T22:02:11.567841+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2445356"
}
],
"notes": [
{
"category": "description",
"text": "The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "net/url: Incorrect parsing of IPv6 host literals in net/url",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-25679"
},
{
"category": "external",
"summary": "RHBZ#2445356",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2445356"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-25679",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-25679"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-25679"
},
{
"category": "external",
"summary": "https://go.dev/cl/752180",
"url": "https://go.dev/cl/752180"
},
{
"category": "external",
"summary": "https://go.dev/issue/77578",
"url": "https://go.dev/issue/77578"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk",
"url": "https://groups.google.com/g/golang-announce/c/EdhZqrQ98hk"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4601",
"url": "https://pkg.go.dev/vuln/GO-2026-4601"
}
],
"release_date": "2026-03-06T21:28:14.211000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "net/url: Incorrect parsing of IPv6 host literals in net/url"
},
{
"cve": "CVE-2026-32280",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2026-04-08T02:01:19.572351+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456339"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Go standard library packages `crypto/x509` and `crypto/tls`. During the process of building a certificate chain, an attacker can provide a large number of intermediate certificates. This excessive input is not properly limited, leading to an uncontrolled amount of work being performed. This can result in a denial of service (DoS) condition, making the affected system or application unavailable to legitimate users.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability in the Go standard library\u0027s certificate chain building process. Systems utilizing Go applications that process untrusted TLS certificates or X.509 certificate chains are susceptible to resource exhaustion when presented with an excessive number of intermediate certificates, potentially leading to service unavailability. This flaw impacts applications directly using `crypto/x509` or `crypto/tls`.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32280"
},
{
"category": "external",
"summary": "RHBZ#2456339",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456339"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32280",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32280"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32280"
},
{
"category": "external",
"summary": "https://go.dev/cl/758320",
"url": "https://go.dev/cl/758320"
},
{
"category": "external",
"summary": "https://go.dev/issue/78282",
"url": "https://go.dev/issue/78282"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4947",
"url": "https://pkg.go.dev/vuln/GO-2026-4947"
}
],
"release_date": "2026-04-08T01:06:58.595000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/x509: crypto/tls: golang: Go: Denial of Service vulnerability in certificate chain building"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-32282",
"cwe": {
"id": "CWE-367",
"name": "Time-of-check Time-of-use (TOCTOU) Race Condition"
},
"discovery_date": "2026-04-08T02:01:12.683211+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456336"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the `Root.Chmod` function is replaced with a symbolic link during execution, specifically after `Root.Chmod` checks the target but before acting, the `chmod` operation will be performed on the file the symbolic link points to. This issue can bypass directory restrictions and lead to unauthorized permission changes on the filesystem.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this issue, an attacker needs access to the system and the required permissions to create a symbolic link. Additionally, the attacker must swap the target file with a symbolic link in the exact window after the `Root.Chmod` function checks its target but before acting. Due to these conditions, this flaw has been rated with a moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32282"
},
{
"category": "external",
"summary": "RHBZ#2456336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456336"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32282",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32282"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32282"
},
{
"category": "external",
"summary": "https://go.dev/cl/763761",
"url": "https://go.dev/cl/763761"
},
{
"category": "external",
"summary": "https://go.dev/issue/78293",
"url": "https://go.dev/issue/78293"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4864",
"url": "https://pkg.go.dev/vuln/GO-2026-4864"
}
],
"release_date": "2026-04-08T01:06:55.953000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root"
},
{
"cve": "CVE-2026-32283",
"cwe": {
"id": "CWE-764",
"name": "Multiple Locks of a Critical Resource"
},
"discovery_date": "2026-04-08T02:01:16.213799+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456338"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the `crypto/tls` package within the Go (golang) standard library, specifically affecting TLS 1.3 connections. A remote attacker can exploit this vulnerability by sending multiple key update messages in a single record after the handshake. This can cause the connection to deadlock, leading to uncontrolled consumption of resources and ultimately a denial of service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Important: A flaw in the Go `crypto/tls` package allows a remote attacker to cause a denial of service in applications using TLS 1.3. By sending multiple key update messages in a single record post-handshake, an attacker can trigger a connection deadlock, leading to uncontrolled resource consumption. This impacts Red Hat products utilizing the affected Go standard library for TLS 1.3 connections.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32283"
},
{
"category": "external",
"summary": "RHBZ#2456338",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456338"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32283",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32283"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32283"
},
{
"category": "external",
"summary": "https://go.dev/cl/763767",
"url": "https://go.dev/cl/763767"
},
{
"category": "external",
"summary": "https://go.dev/issue/78334",
"url": "https://go.dev/issue/78334"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4870",
"url": "https://pkg.go.dev/vuln/GO-2026-4870"
}
],
"release_date": "2026-04-08T01:06:57.670000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "crypto/tls: golang: Go crypto/tls: Denial of Service via multiple TLS 1.3 key update messages"
},
{
"cve": "CVE-2026-33186",
"cwe": {
"id": "CWE-551",
"name": "Incorrect Behavior Order: Authorization Before Parsing and Canonicalization"
},
"discovery_date": "2026-03-20T23:02:27.802640+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2449833"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in gRPC-Go, the Go language implementation of gRPC. This vulnerability, an authorization bypass, is caused by improper input validation of the HTTP/2 `:path` pseudo-header. A remote attacker can exploit this by sending raw HTTP/2 frames with a malformed `:path` that omits the mandatory leading slash. This allows the attacker to bypass defined security policies, potentially leading to unauthorized access to services or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "RHBZ#2449833",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2449833"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-33186",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-33186"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-33186"
},
{
"category": "external",
"summary": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3",
"url": "https://github.com/grpc/grpc-go/security/advisories/GHSA-p77j-4mvh-x3m3"
}
],
"release_date": "2026-03-20T22:23:32.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "workaround",
"details": "To mitigate this issue, implement infrastructure-level normalization to ensure all incoming HTTP/2 `:path` headers are properly formatted with a leading slash before reaching the gRPC-Go server. This can be achieved by configuring a reverse proxy or API gateway to validate and normalize the `:path` header. Ensure that any such intermediary is properly configured and restarted to apply the changes, which may temporarily impact service availability.",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "google.golang.org/grpc/grpc-go: google.golang.org/grpc/authz: gRPC-Go: Authorization bypass due to improper HTTP/2 path validation"
},
{
"cve": "CVE-2026-40192",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2026-04-16T00:00:49.590876+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2458856"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Pillow, a Python imaging library. This vulnerability allows a remote attacker to trigger a denial of service (DoS) by providing a specially crafted FITS image file. The library\u0027s failure to limit the amount of GZIP-compressed data during decoding can lead to unbounded memory consumption, causing the system to crash or experience severe performance issues.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
],
"known_not_affected": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-40192"
},
{
"category": "external",
"summary": "RHBZ#2458856",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2458856"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-40192",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-40192"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-40192"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628",
"url": "https://github.com/python-pillow/Pillow/commit/3cb854e8b2bab43f40e342e665f9340d861aa628"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/pull/9521",
"url": "https://github.com/python-pillow/Pillow/pull/9521"
},
{
"category": "external",
"summary": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j",
"url": "https://github.com/python-pillow/Pillow/security/advisories/GHSA-whj4-6x5x-4v2j"
},
{
"category": "external",
"summary": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb",
"url": "https://pillow.readthedocs.io/en/stable/releasenotes/12.2.0.html#prevent-fits-decompression-bomb"
}
],
"release_date": "2026-04-15T22:53:56.147000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T17:24:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor detailed instructions how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/red_hat_satellite/6.16/html/updating_red_hat_satellite/index",
"product_ids": [
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27076"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.src",
"8Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el8sat.x86_64",
"8Base-satellite-6.16:python-pillow-0:12.2.0-1.el8pc.src",
"8Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el8pc.src",
"8Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el8pc.src",
"8Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el8pc.x86_64",
"8Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el8pc.noarch",
"8Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el8pc.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el8sat.src",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.noarch",
"8Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el8sat.src",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-0:6.16.9-1.el8sat.src",
"8Base-satellite-6.16:satellite-cli-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-common-0:6.16.9-1.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.noarch",
"8Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.src",
"8Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el8sat.x86_64",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16-capsule:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16-capsule:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16-capsule:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16-capsule:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16-capsule:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16-capsule:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16-capsule:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-capsule:satellite-capsule-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-capsule:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16-maintenance:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16-utils:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.src",
"9Base-satellite-6.16:dynflow-utils-0:1.6.3-1.1.el9sat.x86_64",
"9Base-satellite-6.16:python-pillow-0:12.2.0-1.el9pc.src",
"9Base-satellite-6.16:python-pillow-debugsource-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python-pulp-ansible-1:0.21.10-4.el9pc.src",
"9Base-satellite-6.16:python-pulp-rpm-0:3.26.8-1.el9pc.src",
"9Base-satellite-6.16:python3.11-pillow-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pillow-debuginfo-0:12.2.0-1.el9pc.x86_64",
"9Base-satellite-6.16:python3.11-pulp-ansible-1:0.21.10-4.el9pc.noarch",
"9Base-satellite-6.16:python3.11-pulp-rpm-0:3.26.8-1.el9pc.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-foreman_maintain-1:1.7.14-1.el9sat.src",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.noarch",
"9Base-satellite-6.16:rubygem-katello-0:4.14.0.20-1.el9sat.src",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-0:6.16.9-1.el9sat.src",
"9Base-satellite-6.16:satellite-cli-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-common-0:6.16.9-1.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.noarch",
"9Base-satellite-6.16:satellite-lifecycle-0:6.16.0-3.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.src",
"9Base-satellite-6.16:yggdrasil-worker-forwarder-0:0.0.3-5.el9sat.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Pillow: Pillow: Denial of Service via decompression bomb in FITS image processing"
}
]
}
RHSA-2026:27126
Vulnerability from csaf_redhat - Published: 2026-06-18 16:31 - Updated: 2026-07-13 17:32A flaw was found in Apache Thrift c_glib language bindings. A remote attacker could send specially crafted requests to a c_glib-based Thrift server, leading to a mismatched memory management routines vulnerability. This could cause the server to crash with a "free(): invalid pointer" error, resulting in a Denial of Service (DoS).
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x | — |
Vendor Fix
fix
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64 | — | ||
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64 | — |
A flaw was found in Go's `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64 | — |
Workaround
|
A flaw was found in Apache Thrift. This vulnerability involves improper validation of a certificate with a host mismatch, which could allow a remote attacker to bypass security checks. By presenting a specially crafted certificate, an attacker may impersonate a legitimate server or client. This could lead to a security bypass, potentially enabling unauthorized access or information disclosure.
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x | — |
Vendor Fix
fix
Workaround
|
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64 | — |
Workaround
|
|
| Unresolved product id: Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64 | — |
Workaround
|
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift distributed tracing platform (Tempo) 3.10.0 has been released",
"title": "Topic"
},
{
"category": "general",
"text": "This release of the Red Hat OpenShift distributed tracing platform (Tempo) provides new features, security improvements, and bug fixes.\n\n\nBreaking changes:\n\n* None.\n\n\nDeprecations:\n\n* None.\n\n\nTechnology Preview features:\n\n* None.\n\n\nEnhancements:\n\n* TempoStack support for the automatically injected CA bundle: The TempoStack custom resource supports the automatically injected CA bundle ca-bundle.crt for storage TLS configuration. This CA bundle is supported in addition to the service-ca.crt and ca.crt certificates. As a result, you can use the automatically injected CA bundle to simplify TLS configuration for storage for your TempoStack instances. For more information, see https://redhat.atlassian.net/browse/TRACING-6222.\n\n* Cluster TLS profile adherence: This update introduces support for cluster TLS profile adherence. The Operator uses the TLS configuration from the APIServer custom resource in all TLS communication in the Operator and its operands. As a result, you can configure the TLS cluster profile by using environment variables. For more information, see https://redhat.atlassian.net/browse/TRACING-5845.\n\n* Optional spec.size field provides predefined resource configurations: The TempoStack custom resource supports the optional spec.size field, which provides predefined, pre-tested resource configurations. The following sizes are available: 1x.demo, 1x.pico, 1x.extra-small, 1x.small, and 1x.medium. The selected size sets the resource requests and limits for the TempoStack components and a default replication factor if one is not explicitly specified. The default replication factor is 1 for 1x.demo and 2 for the other sizes. As a result, you can deploy a TempoStack instance without manually calculating resources for each component. For more information, see https://redhat.atlassian.net/browse/TRACING-5376.\n\n* Custom environment variables for TempoStack containers: The TempoStack custom resource supports the spec.env and spec.envFrom fields, which allow you to inject custom environment variables into all Tempo containers, including values sourced from a secret or config map. Combined with the spec.extraConfig field, you can reference these environment variables in the Tempo configuration by using the ${VAR_NAME} syntax. As a result, you can supply the password for a password-protected Redis cache from a secret instead of embedding it in the custom resource. For more information, see https://redhat.atlassian.net/browse/TRACING-5933.\n\n\nBug fixes:\n\n* The tempo-gateway-opa container starts in namespaces that enforce a LimitRange: Before this update, the tempo-gateway-opa container was created without default resource requests and limits when percentage-based resource calculation was used. As a consequence, the container could fail to start in namespaces that enforce a LimitRange resource. With this update, the Operator sets default resource requests and limits on the tempo-gateway-opa container. As a result, the tempo-gateway-opa container starts as expected. For more information, see https://redhat.atlassian.net/browse/TRACING-5716.\n\n* TempoStack and TempoMonolithic resources no longer get stuck in a terminating state: Previously, the certificate rotation controllers in the Tempo Operator updated certificate hash annotations without checking whether a resource had a deletion timestamp. When a TempoStack or TempoMonolithic resource was deleted, these annotation updates caused resource version conflicts that prevented the foreground deletion finalizer from being removed. As a result, resources remained stuck in a terminating state. With this update, the certificate rotation controllers skip annotation updates when a resource is being deleted. As a result, TempoStack and TempoMonolithic resources are deleted correctly without getting stuck in a terminating state. For more information, see https://redhat.atlassian.net/browse/TRACING-6138.\n\n* TempoStack gateway pods spread across nodes for high availability: Previously, the TempoStack gateway deployment did not set a pod anti-affinity rule. Other components such as the distributor, querier, query front end, and ingesters did set a pod anti-affinity rule. As a result, all gateway replicas could be scheduled on the same node, reducing high availability. With this update, the gateway and compactor deployments set pod anti-affinity rules. As a result, gateway replicas are spread across nodes, which can improve high availability. For more information, see https://redhat.atlassian.net/browse/TRACING-6148.\n\n* The gateway correctly forwards OTLP HTTP traffic over HTTPS for Tempo Monolithic: Before this update, when Tempo Monolithic was configured with \u0027multitenancy.enabled: true\u0027 and \u0027ingestion.otlp.http.tls.enabled: true\u0027, the gateway forwarded OTLP HTTP traffic to the Tempo receiver using plain HTTP instead of HTTPS. As a consequence, the connection failed with a \u0027connection reset by peer\u0027 error because the receiver expected TLS connections. With this update, the gateway forwards OTLP HTTP traffic over HTTPS when TLS is enabled. As a result, OTLP HTTP ingestion through the gateway works correctly when multitenancy and OTLP HTTP TLS are enabled. For more information, see https://issues.redhat.com/browse/TRACING-5973.\n\n\nKnown issues:",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2026:27126",
"url": "https://access.redhat.com/errata/RHSA-2026:27126"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-48431",
"url": "https://access.redhat.com/security/cve/CVE-2025-48431"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-32281",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2026-43869",
"url": "https://access.redhat.com/security/cve/CVE-2026-43869"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-tempo",
"url": "https://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/distributed_tracing/distributed-tracing-platform-tempo"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2026/rhsa-2026_27126.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.10.0 release",
"tracking": {
"current_release_date": "2026-07-13T17:32:01+00:00",
"generator": {
"date": "2026-07-13T17:32:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "5.3.2"
}
},
"id": "RHSA-2026:27126",
"initial_release_date": "2026-06-18T16:31:31+00:00",
"revision_history": [
{
"date": "2026-06-18T16:31:31+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2026-06-18T16:31:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-07-13T17:32:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 3.10.1",
"product": {
"name": "Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:3.10::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-operator-bundle@sha256%3A03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-operator-bundle\u0026tag=1781591522"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel9\u0026tag=1781589515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9\u0026tag=1781589458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3A5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9\u0026tag=1781589512"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3Aa72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9-operator\u0026tag=1781589394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3A7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel9\u0026tag=1781587690"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9\u0026tag=1781589494"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel9\u0026tag=1781589515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9\u0026tag=1781589458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3Af889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9\u0026tag=1781589512"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3Abd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9-operator\u0026tag=1781589394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3Afbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel9\u0026tag=1781587690"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90?arch=arm64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9\u0026tag=1781589494"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3A964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel9\u0026tag=1781589515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9\u0026tag=1781589458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3Ae5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9\u0026tag=1781589512"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3A72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9-operator\u0026tag=1781589394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3Aa13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel9\u0026tag=1781587690"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3A4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9\u0026tag=1781589494"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel9@sha256%3Aed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel9\u0026tag=1781589515"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-jaeger-query-rhel9@sha256%3A0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9\u0026tag=1781589458"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel9@sha256%3A648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9\u0026tag=1781589512"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9-operator@sha256%3A982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9-operator\u0026tag=1781589394"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel9@sha256%3A6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel9\u0026tag=1781587690"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x",
"product": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x",
"product_id": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel9@sha256%3Af1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel9\u0026tag=1781589494"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64 as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x as a component of Red Hat OpenShift distributed tracing 3.10.1",
"product_id": "Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
},
"product_reference": "registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x",
"relates_to_product_reference": "Red Hat OpenShift distributed tracing 3.10.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-48431",
"cwe": {
"id": "CWE-763",
"name": "Release of Invalid Pointer or Reference"
},
"discovery_date": "2026-04-28T10:01:26.612789+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2463410"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Apache Thrift c_glib language bindings. A remote attacker could send specially crafted requests to a c_glib-based Thrift server, leading to a mismatched memory management routines vulnerability. This could cause the server to crash with a \"free(): invalid pointer\" error, resulting in a Denial of Service (DoS).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Apache Thrift: c_glib: Apache Thrift c_glib: Denial of Service via specially crafted requests",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This is an Important denial of service vulnerability affecting Apache Thrift c_glib language bindings. Remote attackers can exploit this flaw by sending specially crafted requests to a c_glib-based Thrift server, leading to a server crash and service disruption. This impact is considered Important due to the potential for unauthenticated remote denial of service in Red Hat products that deploy and expose such Thrift servers.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48431"
},
{
"category": "external",
"summary": "RHBZ#2463410",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2463410"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48431",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48431"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48431",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48431"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2026/04/28/8",
"url": "http://www.openwall.com/lists/oss-security/2026/04/28/8"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql",
"url": "https://lists.apache.org/thread/lb4j0zyd5f3g36cos0wql925przpnwql"
}
],
"release_date": "2026-04-28T09:11:44.283000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T16:31:31+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27126"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Apache Thrift: c_glib: Apache Thrift c_glib: Denial of Service via specially crafted requests"
},
{
"cve": "CVE-2026-32281",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2026-04-08T02:01:00.930989+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2456333"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s `crypto/x509` package. A remote attacker could exploit this by presenting a specially crafted certificate chain containing a large number of policy mappings. This inefficient validation process consumes excessive resources, which can lead to a denial of service (DoS) for applications or systems performing certificate validation.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw occurs during the validation of otherwise trusted certificate chains that contain a large number of policy mappings, leading to excessive resource consumption. Exploitation requires an attacker to present a specially crafted, yet trusted, certificate chain which would require the attacker has already compromised a trusted certificate root. Red Hat continuously monitors certificate authorities and curates the set which is trusted by default for Red Hat products.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-32281"
},
{
"category": "external",
"summary": "RHBZ#2456333",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2456333"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-32281",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-32281"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-32281"
},
{
"category": "external",
"summary": "https://go.dev/cl/758061",
"url": "https://go.dev/cl/758061"
},
{
"category": "external",
"summary": "https://go.dev/issue/78281",
"url": "https://go.dev/issue/78281"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU",
"url": "https://groups.google.com/g/golang-announce/c/0uYbvbPZRWU"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2026-4946",
"url": "https://pkg.go.dev/vuln/GO-2026-4946"
}
],
"release_date": "2026-04-08T01:06:58.354000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T16:31:31+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27126"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "crypto/x509: golang: Go crypto/x509: Denial of Service via inefficient certificate chain validation"
},
{
"cve": "CVE-2026-43869",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2026-05-05T08:00:56.417384+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2466660"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Apache Thrift. This vulnerability involves improper validation of a certificate with a host mismatch, which could allow a remote attacker to bypass security checks. By presenting a specially crafted certificate, an attacker may impersonate a legitimate server or client. This could lead to a security bypass, potentially enabling unauthorized access or information disclosure.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "Apache Thrift: Apache Thrift: Security bypass due to improper certificate validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"known_not_affected": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2026-43869"
},
{
"category": "external",
"summary": "RHBZ#2466660",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2466660"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2026-43869",
"url": "https://www.cve.org/CVERecord?id=CVE-2026-43869"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2026-43869",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2026-43869"
},
{
"category": "external",
"summary": "https://lists.apache.org/thread/3hsgl1b69wzq3ry39scqbv2dhyl3j52r",
"url": "https://lists.apache.org/thread/3hsgl1b69wzq3ry39scqbv2dhyl3j52r"
}
],
"release_date": "2026-05-05T07:25:48.611000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2026-06-18T16:31:31+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/latest/html/operators/administrator-tasks#olm-upgrading-operators",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2026:27126"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:5cd85eb3e3db8bc1e9c6f4fabce36953900a458146b7ce708aa0855fcd7a0d8c_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:648a86d94ec347c50f841c2c29e42757c292dc524ab6846fcd5e8e042b62eaff_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:e5d2a94a4e349cc95a0e986b53ce84c465ab4db979ef744fa440b6c0c0e0d470_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-opa-rhel9@sha256:f889ac6aa2e58468186f26e23bbccb138a6a447812c5cd10f27abac59bbff66a_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:6d1a2f14570e24fdf67ead3be0f1009367de068cca2aabb52f208ab7de2f75cb_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:93d0e97f5a2e3a912b278e441ba0d5a12dfbaec7b5fbc74e0024370682835db8_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:964eb3aec90a5349573cf9051fd8216235f5df75df60cefa1be7169798405593_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-gateway-rhel9@sha256:ed07d775c269c34ade7d6542e767fecba8d8400e7b4dcf89ffd28dda78cab24c_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:0f3850087eaba5ed9eeb72d17daa80e9e54949ae8784b3188aab230f91972ba0_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:6ce0e7e216cd3ebde9e52aaefdb075be1b50a237ad0842b312f8ff57cc99bc0e_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:741666990f423912210682fd1f01ccff3443a1a9e7a364ee46fb6c72f0ed2c1b_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-jaeger-query-rhel9@sha256:8a117249236408257bf19cb9d600b03c851b94fa072acccef8ed1ebc18164354_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-operator-bundle@sha256:03cbea46e6fb4147cb6bcdccd049a1609d3f66901cb125363c52bb821a8ade47_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:6cbf17cad7cf17d49fa078900b19ef9cf4bc6465d259d75fb9137379445df991_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:7b3f78b81dd82c64012c2ef2b2c05dd9fbad2cb270f24fcdf592e606cdc4636e_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:a13fff512de7b06cce174b386e4f1804ea3a146e3a062a22f10e5dfc509daa7a_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-query-rhel9@sha256:fbe636335dbd0fac4680252d9240115207d8f0753c921d990df4aedbf9c0dbdf_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:72027f041985f99327ea415ee17139770d8d0bdcf7baf13b59591c60fb585b33_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:982cc78ad2616cbed77c2465d51fa61b78e54021ad84e8ecfd9b4aef80f6e39f_s390x",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:a72d0e29b18d3ef6cd8ec6fcfc047cbd51e7506ec8132530b6df89ea7c6fa912_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9-operator@sha256:bd369ccca53dc35702aad962ae86918076cbe113326d9e09589b2d3324e23bfa_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:49b701eaa9a8c0f97a4a2982b20ee510f294f0c7e06800890c953b98d3f1eebe_amd64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:4b79a6b2a5bd9cf17fe24da802779ae87710e522aeb3538007cf8c2326af2b39_ppc64le",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:8f3b20e29544cc58f8256df89322847fbbaca8e7292d1235da0be9b126d25a90_arm64",
"Red Hat OpenShift distributed tracing 3.10.1:registry.redhat.io/rhosdt/tempo-rhel9@sha256:f1be50dfd7e9621bee928080a8f6f6fc0c9fb37e8c93931926faf4e5b50f1052_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "Apache Thrift: Apache Thrift: Security bypass due to improper certificate validation"
}
]
}
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.