Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-9512 (GCVE-0-2019-9512)
Vulnerability from cvelistv5 – Published: 2019-08-13 20:50 – Updated: 2024-08-04 21:54
VLAI
EPSS
Title
Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service
Summary
Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.
Severity
7.5 (High)
CWE
- CWE-400 - Uncontrolled Resource Consumption
Assigner
References
65 references
Credits
Thanks to Jonathan Looney of Netflix for reporting this vulnerability.
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T21:54:44.253Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "VU#605641",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "https://kb.cert.org/vuls/id/605641/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"name": "[trafficserver-dev] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-users] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-announce] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"
},
{
"name": "20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Aug/24"
},
{
"name": "20190816 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"tags": [
"mailing-list",
"x_refsource_FULLDISC",
"x_transferred"
],
"url": "http://seclists.org/fulldisclosure/2019/Aug/16"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://www.synology.com/security/advisory/Synology_SA_19_33"
},
{
"name": "20190819 [SECURITY] [DSA 4503-1] golang-1.11 security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Aug/31"
},
{
"name": "DSA-4503",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4503"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K98053339"
},
{
"name": "[oss-security] 20190819 [ANNOUNCE] Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0001/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0004/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0005/"
},
{
"name": "openSUSE-SU-2019:2000",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"
},
{
"name": "FEDORA-2019-5a6a7bc12c",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"
},
{
"name": "FEDORA-2019-6a2980de56",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"
},
{
"name": "20190825 [SECURITY] [DSA 4508-1] h2o security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Aug/43"
},
{
"name": "DSA-4508",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4508"
},
{
"name": "openSUSE-SU-2019:2056",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"
},
{
"name": "openSUSE-SU-2019:2072",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"
},
{
"name": "FEDORA-2019-55d101a740",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"
},
{
"name": "FEDORA-2019-65db7ad6c7",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"
},
{
"name": "openSUSE-SU-2019:2085",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"
},
{
"name": "RHSA-2019:2682",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
},
{
"name": "DSA-4520",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "https://www.debian.org/security/2019/dsa-4520"
},
{
"name": "RHSA-2019:2726",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2726"
},
{
"name": "20190910 [SECURITY] [DSA 4520-1] trafficserver security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "https://seclists.org/bugtraq/2019/Sep/18"
},
{
"name": "RHSA-2019:2594",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
},
{
"name": "openSUSE-SU-2019:2114",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"
},
{
"name": "openSUSE-SU-2019:2115",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"
},
{
"name": "RHSA-2019:2661",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296"
},
{
"name": "RHSA-2019:2690",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2690"
},
{
"name": "RHSA-2019:2766",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2766"
},
{
"name": "openSUSE-SU-2019:2130",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"
},
{
"name": "RHSA-2019:2796",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2796"
},
{
"name": "RHSA-2019:2861",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2861"
},
{
"name": "RHSA-2019:2925",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2925"
},
{
"name": "RHSA-2019:2939",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2939"
},
{
"name": "RHSA-2019:2955",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2955"
},
{
"name": "RHSA-2019:2966",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2966"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"name": "RHSA-2019:3131",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3131"
},
{
"name": "RHSA-2019:2769",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2769"
},
{
"name": "RHSA-2019:3245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3245"
},
{
"name": "RHSA-2019:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3265"
},
{
"name": "RHSA-2019:3892",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3892"
},
{
"name": "RHSA-2019:3906",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3906"
},
{
"name": "RHSA-2019:4018",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4018"
},
{
"name": "RHSA-2019:4019",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4019"
},
{
"name": "RHSA-2019:4021",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4021"
},
{
"name": "RHSA-2019:4020",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4020"
},
{
"name": "RHSA-2019:4045",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4045"
},
{
"name": "RHSA-2019:4042",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4042"
},
{
"name": "RHSA-2019:4040",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4040"
},
{
"name": "RHSA-2019:4041",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4041"
},
{
"name": "RHSA-2019:4269",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "RHSA-2019:4273",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4273"
},
{
"name": "RHSA-2019:4352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4352"
},
{
"name": "RHSA-2020:0406",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0406"
},
{
"name": "RHSA-2020:0727",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0727"
},
{
"name": "USN-4308-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/4308-1/"
},
{
"name": "[debian-lts-announce] 20201208 [SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Thanks to Jonathan Looney of Netflix for reporting this vulnerability."
}
],
"descriptions": [
{
"lang": "en",
"value": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400 Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-12-08T23:06:27.000Z",
"orgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"shortName": "certcc"
},
"references": [
{
"name": "VU#605641",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "https://kb.cert.org/vuls/id/605641/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"name": "[trafficserver-dev] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-users] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-announce] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E"
},
{
"name": "20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Aug/24"
},
{
"name": "20190816 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"tags": [
"mailing-list",
"x_refsource_FULLDISC"
],
"url": "http://seclists.org/fulldisclosure/2019/Aug/16"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://www.synology.com/security/advisory/Synology_SA_19_33"
},
{
"name": "20190819 [SECURITY] [DSA 4503-1] golang-1.11 security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Aug/31"
},
{
"name": "DSA-4503",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4503"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K98053339"
},
{
"name": "[oss-security] 20190819 [ANNOUNCE] Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0001/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0004/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://security.netapp.com/advisory/ntap-20190823-0005/"
},
{
"name": "openSUSE-SU-2019:2000",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"
},
{
"name": "FEDORA-2019-5a6a7bc12c",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"
},
{
"name": "FEDORA-2019-6a2980de56",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"
},
{
"name": "20190825 [SECURITY] [DSA 4508-1] h2o security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Aug/43"
},
{
"name": "DSA-4508",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4508"
},
{
"name": "openSUSE-SU-2019:2056",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"
},
{
"name": "openSUSE-SU-2019:2072",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"
},
{
"name": "FEDORA-2019-55d101a740",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"
},
{
"name": "FEDORA-2019-65db7ad6c7",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"
},
{
"name": "openSUSE-SU-2019:2085",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"
},
{
"name": "RHSA-2019:2682",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
},
{
"name": "DSA-4520",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "https://www.debian.org/security/2019/dsa-4520"
},
{
"name": "RHSA-2019:2726",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2726"
},
{
"name": "20190910 [SECURITY] [DSA 4520-1] trafficserver security update",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "https://seclists.org/bugtraq/2019/Sep/18"
},
{
"name": "RHSA-2019:2594",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
},
{
"name": "openSUSE-SU-2019:2114",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"
},
{
"name": "openSUSE-SU-2019:2115",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"
},
{
"name": "RHSA-2019:2661",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296"
},
{
"name": "RHSA-2019:2690",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2690"
},
{
"name": "RHSA-2019:2766",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2766"
},
{
"name": "openSUSE-SU-2019:2130",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"
},
{
"name": "RHSA-2019:2796",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2796"
},
{
"name": "RHSA-2019:2861",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2861"
},
{
"name": "RHSA-2019:2925",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2925"
},
{
"name": "RHSA-2019:2939",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2939"
},
{
"name": "RHSA-2019:2955",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2955"
},
{
"name": "RHSA-2019:2966",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2966"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp%3Butm_medium=RSS"
},
{
"name": "RHSA-2019:3131",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3131"
},
{
"name": "RHSA-2019:2769",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:2769"
},
{
"name": "RHSA-2019:3245",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3245"
},
{
"name": "RHSA-2019:3265",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3265"
},
{
"name": "RHSA-2019:3892",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3892"
},
{
"name": "RHSA-2019:3906",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:3906"
},
{
"name": "RHSA-2019:4018",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4018"
},
{
"name": "RHSA-2019:4019",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4019"
},
{
"name": "RHSA-2019:4021",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4021"
},
{
"name": "RHSA-2019:4020",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4020"
},
{
"name": "RHSA-2019:4045",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4045"
},
{
"name": "RHSA-2019:4042",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4042"
},
{
"name": "RHSA-2019:4040",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4040"
},
{
"name": "RHSA-2019:4041",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4041"
},
{
"name": "RHSA-2019:4269",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "RHSA-2019:4273",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4273"
},
{
"name": "RHSA-2019:4352",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2019:4352"
},
{
"name": "RHSA-2020:0406",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0406"
},
{
"name": "RHSA-2020:0727",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2020:0727"
},
{
"name": "USN-4308-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/4308-1/"
},
{
"name": "[debian-lts-announce] 20201208 [SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service",
"x_generator": {
"engine": "Vulnogram 0.0.7"
},
"x_legacyV4Record": {
"CVE_data_meta": {
"AKA": "HTTP/2 Ping Flood",
"ASSIGNER": "cert@cert.org",
"ID": "CVE-2019-9512",
"STATE": "PUBLIC",
"TITLE": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"credit": [
{
"lang": "eng",
"value": "Thanks to Jonathan Looney of Netflix for reporting this vulnerability."
}
],
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both."
}
]
},
"generator": {
"engine": "Vulnogram 0.0.7"
},
"impact": {
"cvss": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-400 Uncontrolled Resource Consumption"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "VU#605641",
"refsource": "CERT-VN",
"url": "https://kb.cert.org/vuls/id/605641/"
},
{
"name": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"refsource": "MISC",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"name": "[trafficserver-dev] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7@%3Cdev.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-users] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04@%3Cusers.trafficserver.apache.org%3E"
},
{
"name": "[trafficserver-announce] 20190813 Apache Traffic Server is vulnerable to various HTTP/2 attacks",
"refsource": "MLIST",
"url": "https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19@%3Cannounce.trafficserver.apache.org%3E"
},
{
"name": "20190814 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Aug/24"
},
{
"name": "20190816 APPLE-SA-2019-08-13-5 SwiftNIO HTTP/2 1.5.0",
"refsource": "FULLDISC",
"url": "http://seclists.org/fulldisclosure/2019/Aug/16"
},
{
"name": "https://www.synology.com/security/advisory/Synology_SA_19_33",
"refsource": "CONFIRM",
"url": "https://www.synology.com/security/advisory/Synology_SA_19_33"
},
{
"name": "20190819 [SECURITY] [DSA 4503-1] golang-1.11 security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Aug/31"
},
{
"name": "DSA-4503",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4503"
},
{
"name": "https://support.f5.com/csp/article/K98053339",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K98053339"
},
{
"name": "[oss-security] 20190819 [ANNOUNCE] Security release of Kubernetes v1.15.3, v1.14.6, v1.13.10 - CVE-2019-9512 and CVE-2019-9514",
"refsource": "MLIST",
"url": "http://www.openwall.com/lists/oss-security/2019/08/20/1"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190823-0001/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190823-0001/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190823-0004/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190823-0004/"
},
{
"name": "https://security.netapp.com/advisory/ntap-20190823-0005/",
"refsource": "CONFIRM",
"url": "https://security.netapp.com/advisory/ntap-20190823-0005/"
},
{
"name": "openSUSE-SU-2019:2000",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html"
},
{
"name": "FEDORA-2019-5a6a7bc12c",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/"
},
{
"name": "FEDORA-2019-6a2980de56",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/"
},
{
"name": "20190825 [SECURITY] [DSA 4508-1] h2o security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Aug/43"
},
{
"name": "DSA-4508",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4508"
},
{
"name": "openSUSE-SU-2019:2056",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html"
},
{
"name": "openSUSE-SU-2019:2072",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html"
},
{
"name": "FEDORA-2019-55d101a740",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/"
},
{
"name": "FEDORA-2019-65db7ad6c7",
"refsource": "FEDORA",
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/"
},
{
"name": "openSUSE-SU-2019:2085",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html"
},
{
"name": "RHSA-2019:2682",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
},
{
"name": "DSA-4520",
"refsource": "DEBIAN",
"url": "https://www.debian.org/security/2019/dsa-4520"
},
{
"name": "RHSA-2019:2726",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2726"
},
{
"name": "20190910 [SECURITY] [DSA 4520-1] trafficserver security update",
"refsource": "BUGTRAQ",
"url": "https://seclists.org/bugtraq/2019/Sep/18"
},
{
"name": "RHSA-2019:2594",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
},
{
"name": "openSUSE-SU-2019:2114",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html"
},
{
"name": "openSUSE-SU-2019:2115",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html"
},
{
"name": "RHSA-2019:2661",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
},
{
"name": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296",
"refsource": "CONFIRM",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296"
},
{
"name": "RHSA-2019:2690",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2690"
},
{
"name": "RHSA-2019:2766",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2766"
},
{
"name": "openSUSE-SU-2019:2130",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html"
},
{
"name": "RHSA-2019:2796",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2796"
},
{
"name": "RHSA-2019:2861",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2861"
},
{
"name": "RHSA-2019:2925",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2925"
},
{
"name": "RHSA-2019:2939",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2939"
},
{
"name": "RHSA-2019:2955",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2955"
},
{
"name": "RHSA-2019:2966",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2966"
},
{
"name": "https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp;utm_medium=RSS",
"refsource": "CONFIRM",
"url": "https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp;utm_medium=RSS"
},
{
"name": "RHSA-2019:3131",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3131"
},
{
"name": "RHSA-2019:2769",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:2769"
},
{
"name": "RHSA-2019:3245",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3245"
},
{
"name": "RHSA-2019:3265",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3265"
},
{
"name": "RHSA-2019:3892",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3892"
},
{
"name": "RHSA-2019:3906",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:3906"
},
{
"name": "RHSA-2019:4018",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4018"
},
{
"name": "RHSA-2019:4019",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4019"
},
{
"name": "RHSA-2019:4021",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4021"
},
{
"name": "RHSA-2019:4020",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4020"
},
{
"name": "RHSA-2019:4045",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4045"
},
{
"name": "RHSA-2019:4042",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4042"
},
{
"name": "RHSA-2019:4040",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4040"
},
{
"name": "RHSA-2019:4041",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4041"
},
{
"name": "RHSA-2019:4269",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4269"
},
{
"name": "RHSA-2019:4273",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4273"
},
{
"name": "RHSA-2019:4352",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2019:4352"
},
{
"name": "RHSA-2020:0406",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0406"
},
{
"name": "RHSA-2020:0727",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2020:0727"
},
{
"name": "USN-4308-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/4308-1/"
},
{
"name": "[debian-lts-announce] 20201208 [SECURITY] [DLA 2485-1] golang-golang-x-net-dev security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html"
}
]
},
"source": {
"discovery": "UNKNOWN"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b",
"assignerShortName": "certcc",
"cveId": "CVE-2019-9512",
"datePublished": "2019-08-13T20:50:59.000Z",
"dateReserved": "2019-03-01T00:00:00.000Z",
"dateUpdated": "2024-08-04T21:54:44.253Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-9512",
"date": "2026-05-27",
"epss": "0.51232",
"percentile": "0.97918"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-9512\",\"sourceIdentifier\":\"cret@cert.org\",\"published\":\"2019-08-13T21:15:12.287\",\"lastModified\":\"2024-11-21T04:51:46.193\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.\"},{\"lang\":\"es\",\"value\":\"Algunas implementaciones de HTTP / 2 son vulnerables a las inundaciones de ping, lo que puede conducir a una denegaci\u00f3n de servicio. El atacante env\u00eda pings continuos a un par HTTP / 2, haciendo que el par construya una cola interna de respuestas. Dependiendo de cu\u00e1n eficientemente se pongan en cola estos datos, esto puede consumir un exceso de CPU, memoria o ambos.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV30\":[{\"source\":\"cret@cert.org\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"cret@cert.org\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:swiftnio:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0.0\",\"versionEndIncluding\":\"1.4.0\",\"matchCriteriaId\":\"93988E60-006B-434D-AB16-1FA1D2FEBC2A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.12\",\"matchCriteriaId\":\"1D294D56-E784-4DA8-9C2C-BC5A05C92C0C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:canonical:ubuntu_linux:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.04\",\"matchCriteriaId\":\"65B1D2F6-BC1F-47AF-B4E6-4B50986AC622\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndIncluding\":\"6.2.3\",\"matchCriteriaId\":\"603BF43B-FC99-4039-A3C0-467F015A32FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndIncluding\":\"7.1.6\",\"matchCriteriaId\":\"07BB02CE-D4F2-459C-B0C6-FF78BF7996AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.0.3\",\"matchCriteriaId\":\"D875E0D8-D109-4F7F-A4C4-9EDD66CEE74E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.8.1\",\"matchCriteriaId\":\"74FB695D-2C76-47AB-988E-5629D2E695E5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"8.9.0\",\"versionEndExcluding\":\"8.16.1\",\"matchCriteriaId\":\"CFC0252A-DF1D-4CF4-B450-27267227B599\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndIncluding\":\"10.12.0\",\"matchCriteriaId\":\"25A3180B-21AF-4010-9DAB-41ADFD2D8031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"10.13.0\",\"versionEndExcluding\":\"10.16.3\",\"matchCriteriaId\":\"2EC65858-FF7B-4171-82EA-80942D426F40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndExcluding\":\"12.8.1\",\"matchCriteriaId\":\"F522C500-AA33-4029-865F-F27FB00A354E\"}]}]}],\"references\":[{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2019/Aug/16\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/08/20/1\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2594\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2661\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2682\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2690\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2726\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2766\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2769\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2796\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2861\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2925\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2939\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2955\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2966\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3131\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3245\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3265\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3892\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3906\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4018\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4019\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4020\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4021\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4040\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4041\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4042\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4045\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4269\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4273\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4352\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0406\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0727\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://kb.cert.org/vuls/id/605641/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/\",\"source\":\"cret@cert.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/\",\"source\":\"cret@cert.org\"},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/24\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/31\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/43\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Sep/18\",\"source\":\"cret@cert.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0001/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0004/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0005/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K98053339\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"cret@cert.org\"},{\"url\":\"https://usn.ubuntu.com/4308-1/\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4503\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4508\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4520\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.synology.com/security/advisory/Synology_SA_19_33\",\"source\":\"cret@cert.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00076.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00002.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00031.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00032.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00038.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://seclists.org/fulldisclosure/2019/Aug/16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2019/08/20/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2594\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2661\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2682\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2690\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2726\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2766\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2769\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2796\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2861\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2925\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2939\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2955\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:2966\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3131\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3245\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3265\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3892\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:3906\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4018\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4019\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4020\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4021\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4040\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4041\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4042\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4045\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4269\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4273\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2019:4352\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0406\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2020:0727\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://kb.cert.org/vuls/id/605641/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10296\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.apache.org/thread.html/392108390cef48af647a2e47b7fd5380e050e35ae8d1aa2030254c04%40%3Cusers.trafficserver.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/ad3d01e767199c1aed8033bb6b3f5bf98c011c7c536f07a5d34b3c19%40%3Cannounce.trafficserver.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.apache.org/thread.html/bde52309316ae798186d783a5e29f4ad1527f61c9219a289d0eee0a7%40%3Cdev.trafficserver.apache.org%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.debian.org/debian-lts-announce/2020/12/msg00011.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4BBP27PZGSY6OP6D26E5FW4GZKBFHNU7/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4ZQGHE3WTYLYAYJEIDJVF2FIGQTAYPMC/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CMNFX5MNYRWWIMO4BTKYQCGUDMHO3AXP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LYO6E3H34C346D2E443GLXK7OK6KIYIQ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/24\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/31\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Aug/43\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://seclists.org/bugtraq/2019/Sep/18\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20190823-0005/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K98053339\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://support.f5.com/csp/article/K98053339?utm_source=f5support\u0026amp%3Butm_medium=RSS\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://usn.ubuntu.com/4308-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4503\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4508\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2019/dsa-4520\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.synology.com/security/advisory/Synology_SA_19_33\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
OPENSUSE-SU-2024:10804-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
go1.11-1.11.13-10.5 on GA media
Severity
Moderate
Notes
Title of the patch: go1.11-1.11.13-10.5 on GA media
Description of the patch: These are all security issues fixed in the go1.11-1.11.13-10.5 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-10804
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
9.8 (Critical)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
69 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "go1.11-1.11.13-10.5 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the go1.11-1.11.13-10.5 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10804",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10804-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-7189 page",
"url": "https://www.suse.com/security/cve/CVE-2014-7189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8618 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-3959 page",
"url": "https://www.suse.com/security/cve/CVE-2016-3959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5386 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5386/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15041 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15042 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-8932 page",
"url": "https://www.suse.com/security/cve/CVE-2017-8932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16873 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16874 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16875 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6574 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14809 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6486 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6486/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9512 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9514 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9514/"
}
],
"title": "go1.11-1.11.13-10.5 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10804-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.11-1.11.13-10.5.aarch64",
"product": {
"name": "go1.11-1.11.13-10.5.aarch64",
"product_id": "go1.11-1.11.13-10.5.aarch64"
}
},
{
"category": "product_version",
"name": "go1.11-doc-1.11.13-10.5.aarch64",
"product": {
"name": "go1.11-doc-1.11.13-10.5.aarch64",
"product_id": "go1.11-doc-1.11.13-10.5.aarch64"
}
},
{
"category": "product_version",
"name": "go1.11-race-1.11.13-10.5.aarch64",
"product": {
"name": "go1.11-race-1.11.13-10.5.aarch64",
"product_id": "go1.11-race-1.11.13-10.5.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.11-1.11.13-10.5.ppc64le",
"product": {
"name": "go1.11-1.11.13-10.5.ppc64le",
"product_id": "go1.11-1.11.13-10.5.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.11-doc-1.11.13-10.5.ppc64le",
"product": {
"name": "go1.11-doc-1.11.13-10.5.ppc64le",
"product_id": "go1.11-doc-1.11.13-10.5.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.11-race-1.11.13-10.5.ppc64le",
"product": {
"name": "go1.11-race-1.11.13-10.5.ppc64le",
"product_id": "go1.11-race-1.11.13-10.5.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.11-1.11.13-10.5.s390x",
"product": {
"name": "go1.11-1.11.13-10.5.s390x",
"product_id": "go1.11-1.11.13-10.5.s390x"
}
},
{
"category": "product_version",
"name": "go1.11-doc-1.11.13-10.5.s390x",
"product": {
"name": "go1.11-doc-1.11.13-10.5.s390x",
"product_id": "go1.11-doc-1.11.13-10.5.s390x"
}
},
{
"category": "product_version",
"name": "go1.11-race-1.11.13-10.5.s390x",
"product": {
"name": "go1.11-race-1.11.13-10.5.s390x",
"product_id": "go1.11-race-1.11.13-10.5.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.11-1.11.13-10.5.x86_64",
"product": {
"name": "go1.11-1.11.13-10.5.x86_64",
"product_id": "go1.11-1.11.13-10.5.x86_64"
}
},
{
"category": "product_version",
"name": "go1.11-doc-1.11.13-10.5.x86_64",
"product": {
"name": "go1.11-doc-1.11.13-10.5.x86_64",
"product_id": "go1.11-doc-1.11.13-10.5.x86_64"
}
},
{
"category": "product_version",
"name": "go1.11-race-1.11.13-10.5.x86_64",
"product": {
"name": "go1.11-race-1.11.13-10.5.x86_64",
"product_id": "go1.11-race-1.11.13-10.5.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64"
},
"product_reference": "go1.11-1.11.13-10.5.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le"
},
"product_reference": "go1.11-1.11.13-10.5.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x"
},
"product_reference": "go1.11-1.11.13-10.5.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64"
},
"product_reference": "go1.11-1.11.13-10.5.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-doc-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64"
},
"product_reference": "go1.11-doc-1.11.13-10.5.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-doc-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le"
},
"product_reference": "go1.11-doc-1.11.13-10.5.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-doc-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x"
},
"product_reference": "go1.11-doc-1.11.13-10.5.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-doc-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64"
},
"product_reference": "go1.11-doc-1.11.13-10.5.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-race-1.11.13-10.5.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64"
},
"product_reference": "go1.11-race-1.11.13-10.5.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-race-1.11.13-10.5.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le"
},
"product_reference": "go1.11-race-1.11.13-10.5.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-race-1.11.13-10.5.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x"
},
"product_reference": "go1.11-race-1.11.13-10.5.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.11-race-1.11.13-10.5.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
},
"product_reference": "go1.11-race-1.11.13-10.5.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-7189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-7189"
}
],
"notes": [
{
"category": "general",
"text": "crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-7189",
"url": "https://www.suse.com/security/cve/CVE-2014-7189"
},
{
"category": "external",
"summary": "SUSE Bug 898901 for CVE-2014-7189",
"url": "https://bugzilla.suse.com/898901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-7189"
},
{
"cve": "CVE-2015-8618",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8618"
}
],
"notes": [
{
"category": "general",
"text": "The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8618",
"url": "https://www.suse.com/security/cve/CVE-2015-8618"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2015-8618",
"url": "https://bugzilla.suse.com/957814"
},
{
"category": "external",
"summary": "SUSE Bug 960151 for CVE-2015-8618",
"url": "https://bugzilla.suse.com/960151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-8618"
},
{
"cve": "CVE-2016-3959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-3959"
}
],
"notes": [
{
"category": "general",
"text": "The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-3959",
"url": "https://www.suse.com/security/cve/CVE-2016-3959"
},
{
"category": "external",
"summary": "SUSE Bug 974232 for CVE-2016-3959",
"url": "https://bugzilla.suse.com/974232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-3959"
},
{
"cve": "CVE-2016-5386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5386"
}
],
"notes": [
{
"category": "general",
"text": "The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application\u0027s outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an \"httpoxy\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5386",
"url": "https://www.suse.com/security/cve/CVE-2016-5386"
},
{
"category": "external",
"summary": "SUSE Bug 988484 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988484"
},
{
"category": "external",
"summary": "SUSE Bug 988486 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988486"
},
{
"category": "external",
"summary": "SUSE Bug 988487 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988487"
},
{
"category": "external",
"summary": "SUSE Bug 988488 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988488"
},
{
"category": "external",
"summary": "SUSE Bug 988489 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988489"
},
{
"category": "external",
"summary": "SUSE Bug 988491 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988491"
},
{
"category": "external",
"summary": "SUSE Bug 988492 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988492"
},
{
"category": "external",
"summary": "SUSE Bug 989125 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/989125"
},
{
"category": "external",
"summary": "SUSE Bug 989174 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/989174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5386"
},
{
"cve": "CVE-2017-15041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15041"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.8.4 and 1.9.x before 1.9.1 allows \"go get\" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, \"go get\" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository\u0027s Git checkout has malicious commands in .git/hooks/, they will execute on the system running \"go get.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15041",
"url": "https://www.suse.com/security/cve/CVE-2017-15041"
},
{
"category": "external",
"summary": "SUSE Bug 1062085 for CVE-2017-15041",
"url": "https://bugzilla.suse.com/1062085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-15041"
},
{
"cve": "CVE-2017-15042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15042"
}
],
"notes": [
{
"category": "general",
"text": "An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn\u0027t advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15042",
"url": "https://www.suse.com/security/cve/CVE-2017-15042"
},
{
"category": "external",
"summary": "SUSE Bug 1062087 for CVE-2017-15042",
"url": "https://bugzilla.suse.com/1062087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-15042"
},
{
"cve": "CVE-2017-8932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-8932"
}
],
"notes": [
{
"category": "general",
"text": "A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-8932",
"url": "https://www.suse.com/security/cve/CVE-2017-8932"
},
{
"category": "external",
"summary": "SUSE Bug 1040618 for CVE-2017-8932",
"url": "https://bugzilla.suse.com/1040618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-8932"
},
{
"cve": "CVE-2018-16873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16873"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16873",
"url": "https://www.suse.com/security/cve/CVE-2018-16873"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-16873"
},
{
"cve": "CVE-2018-16874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16874"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16874",
"url": "https://www.suse.com/security/cve/CVE-2018-16874"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16874"
},
{
"cve": "CVE-2018-16875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16875"
}
],
"notes": [
{
"category": "general",
"text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16875",
"url": "https://www.suse.com/security/cve/CVE-2018-16875"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16875"
},
{
"cve": "CVE-2018-6574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6574"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6574",
"url": "https://www.suse.com/security/cve/CVE-2018-6574"
},
{
"category": "external",
"summary": "SUSE Bug 1080006 for CVE-2018-6574",
"url": "https://bugzilla.suse.com/1080006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-6574"
},
{
"cve": "CVE-2019-14809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14809"
}
],
"notes": [
{
"category": "general",
"text": "net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port number. For example, an attacker can compose a crafted javascript:// URL that results in a hostname of google.com.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14809",
"url": "https://www.suse.com/security/cve/CVE-2019-14809"
},
{
"category": "external",
"summary": "SUSE Bug 1146123 for CVE-2019-14809",
"url": "https://bugzilla.suse.com/1146123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-14809"
},
{
"cve": "CVE-2019-6486",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6486"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6486",
"url": "https://www.suse.com/security/cve/CVE-2019-6486"
},
{
"category": "external",
"summary": "SUSE Bug 1123013 for CVE-2019-6486",
"url": "https://bugzilla.suse.com/1123013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2019-6486"
},
{
"cve": "CVE-2019-9512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9512"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9512",
"url": "https://www.suse.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146099 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146099"
},
{
"category": "external",
"summary": "SUSE Bug 1146111 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146111"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9512"
},
{
"cve": "CVE-2019-9514",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9514"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9514",
"url": "https://www.suse.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "SUSE Bug 1145662 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1145662"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146095 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1146095"
},
{
"category": "external",
"summary": "SUSE Bug 1146115 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1146115"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-doc-1.11.13-10.5.x86_64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.aarch64",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.ppc64le",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.s390x",
"openSUSE Tumbleweed:go1.11-race-1.11.13-10.5.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9514"
}
]
}
OPENSUSE-SU-2024:10805-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
go1.12-1.12.17-4.8 on GA media
Severity
Moderate
Notes
Title of the patch: go1.12-1.12.17-4.8 on GA media
Description of the patch: These are all security issues fixed in the go1.12-1.12.17-4.8 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-10805
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
9.8 (Critical)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.8 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
low
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
78 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "go1.12-1.12.17-4.8 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the go1.12-1.12.17-4.8 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10805",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10805-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-7189 page",
"url": "https://www.suse.com/security/cve/CVE-2014-7189/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-8618 page",
"url": "https://www.suse.com/security/cve/CVE-2015-8618/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-3959 page",
"url": "https://www.suse.com/security/cve/CVE-2016-3959/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5386 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5386/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15041 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15041/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-15042 page",
"url": "https://www.suse.com/security/cve/CVE-2017-15042/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-8932 page",
"url": "https://www.suse.com/security/cve/CVE-2017-8932/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16873 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16873/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16874 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16874/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-16875 page",
"url": "https://www.suse.com/security/cve/CVE-2018-16875/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-6574 page",
"url": "https://www.suse.com/security/cve/CVE-2018-6574/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11888 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11888/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-14809 page",
"url": "https://www.suse.com/security/cve/CVE-2019-14809/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-16276 page",
"url": "https://www.suse.com/security/cve/CVE-2019-16276/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17596 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-6486 page",
"url": "https://www.suse.com/security/cve/CVE-2019-6486/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9512 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9512/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9514 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9514/"
}
],
"title": "go1.12-1.12.17-4.8 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10805-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "go1.12-1.12.17-4.8.aarch64",
"product": {
"name": "go1.12-1.12.17-4.8.aarch64",
"product_id": "go1.12-1.12.17-4.8.aarch64"
}
},
{
"category": "product_version",
"name": "go1.12-doc-1.12.17-4.8.aarch64",
"product": {
"name": "go1.12-doc-1.12.17-4.8.aarch64",
"product_id": "go1.12-doc-1.12.17-4.8.aarch64"
}
},
{
"category": "product_version",
"name": "go1.12-race-1.12.17-4.8.aarch64",
"product": {
"name": "go1.12-race-1.12.17-4.8.aarch64",
"product_id": "go1.12-race-1.12.17-4.8.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.12-1.12.17-4.8.ppc64le",
"product": {
"name": "go1.12-1.12.17-4.8.ppc64le",
"product_id": "go1.12-1.12.17-4.8.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.12-doc-1.12.17-4.8.ppc64le",
"product": {
"name": "go1.12-doc-1.12.17-4.8.ppc64le",
"product_id": "go1.12-doc-1.12.17-4.8.ppc64le"
}
},
{
"category": "product_version",
"name": "go1.12-race-1.12.17-4.8.ppc64le",
"product": {
"name": "go1.12-race-1.12.17-4.8.ppc64le",
"product_id": "go1.12-race-1.12.17-4.8.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.12-1.12.17-4.8.s390x",
"product": {
"name": "go1.12-1.12.17-4.8.s390x",
"product_id": "go1.12-1.12.17-4.8.s390x"
}
},
{
"category": "product_version",
"name": "go1.12-doc-1.12.17-4.8.s390x",
"product": {
"name": "go1.12-doc-1.12.17-4.8.s390x",
"product_id": "go1.12-doc-1.12.17-4.8.s390x"
}
},
{
"category": "product_version",
"name": "go1.12-race-1.12.17-4.8.s390x",
"product": {
"name": "go1.12-race-1.12.17-4.8.s390x",
"product_id": "go1.12-race-1.12.17-4.8.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go1.12-1.12.17-4.8.x86_64",
"product": {
"name": "go1.12-1.12.17-4.8.x86_64",
"product_id": "go1.12-1.12.17-4.8.x86_64"
}
},
{
"category": "product_version",
"name": "go1.12-doc-1.12.17-4.8.x86_64",
"product": {
"name": "go1.12-doc-1.12.17-4.8.x86_64",
"product_id": "go1.12-doc-1.12.17-4.8.x86_64"
}
},
{
"category": "product_version",
"name": "go1.12-race-1.12.17-4.8.x86_64",
"product": {
"name": "go1.12-race-1.12.17-4.8.x86_64",
"product_id": "go1.12-race-1.12.17-4.8.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64"
},
"product_reference": "go1.12-1.12.17-4.8.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le"
},
"product_reference": "go1.12-1.12.17-4.8.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x"
},
"product_reference": "go1.12-1.12.17-4.8.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64"
},
"product_reference": "go1.12-1.12.17-4.8.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-doc-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64"
},
"product_reference": "go1.12-doc-1.12.17-4.8.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-doc-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le"
},
"product_reference": "go1.12-doc-1.12.17-4.8.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-doc-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x"
},
"product_reference": "go1.12-doc-1.12.17-4.8.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-doc-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64"
},
"product_reference": "go1.12-doc-1.12.17-4.8.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-race-1.12.17-4.8.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64"
},
"product_reference": "go1.12-race-1.12.17-4.8.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-race-1.12.17-4.8.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le"
},
"product_reference": "go1.12-race-1.12.17-4.8.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-race-1.12.17-4.8.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x"
},
"product_reference": "go1.12-race-1.12.17-4.8.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go1.12-race-1.12.17-4.8.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
},
"product_reference": "go1.12-race-1.12.17-4.8.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-7189",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-7189"
}
],
"notes": [
{
"category": "general",
"text": "crpyto/tls in Go 1.1 before 1.3.2, when SessionTicketsDisabled is enabled, allows man-in-the-middle attackers to spoof clients via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-7189",
"url": "https://www.suse.com/security/cve/CVE-2014-7189"
},
{
"category": "external",
"summary": "SUSE Bug 898901 for CVE-2014-7189",
"url": "https://bugzilla.suse.com/898901"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-7189"
},
{
"cve": "CVE-2015-8618",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-8618"
}
],
"notes": [
{
"category": "general",
"text": "The Int.Exp Montgomery code in the math/big library in Go 1.5.x before 1.5.3 mishandles carry propagation and produces incorrect output, which makes it easier for attackers to obtain private RSA keys via unspecified vectors.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-8618",
"url": "https://www.suse.com/security/cve/CVE-2015-8618"
},
{
"category": "external",
"summary": "SUSE Bug 957814 for CVE-2015-8618",
"url": "https://bugzilla.suse.com/957814"
},
{
"category": "external",
"summary": "SUSE Bug 960151 for CVE-2015-8618",
"url": "https://bugzilla.suse.com/960151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-8618"
},
{
"cve": "CVE-2016-3959",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-3959"
}
],
"notes": [
{
"category": "general",
"text": "The Verify function in crypto/dsa/dsa.go in Go before 1.5.4 and 1.6.x before 1.6.1 does not properly check parameters passed to the big integer library, which might allow remote attackers to cause a denial of service (infinite loop) via a crafted public key to a program that uses HTTPS client certificates or SSH server libraries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-3959",
"url": "https://www.suse.com/security/cve/CVE-2016-3959"
},
{
"category": "external",
"summary": "SUSE Bug 974232 for CVE-2016-3959",
"url": "https://bugzilla.suse.com/974232"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-3959"
},
{
"cve": "CVE-2016-5386",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5386"
}
],
"notes": [
{
"category": "general",
"text": "The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application\u0027s outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an \"httpoxy\" issue.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5386",
"url": "https://www.suse.com/security/cve/CVE-2016-5386"
},
{
"category": "external",
"summary": "SUSE Bug 988484 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988484"
},
{
"category": "external",
"summary": "SUSE Bug 988486 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988486"
},
{
"category": "external",
"summary": "SUSE Bug 988487 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988487"
},
{
"category": "external",
"summary": "SUSE Bug 988488 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988488"
},
{
"category": "external",
"summary": "SUSE Bug 988489 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988489"
},
{
"category": "external",
"summary": "SUSE Bug 988491 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988491"
},
{
"category": "external",
"summary": "SUSE Bug 988492 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/988492"
},
{
"category": "external",
"summary": "SUSE Bug 989125 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/989125"
},
{
"category": "external",
"summary": "SUSE Bug 989174 for CVE-2016-5386",
"url": "https://bugzilla.suse.com/989174"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-5386"
},
{
"cve": "CVE-2017-15041",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15041"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.8.4 and 1.9.x before 1.9.1 allows \"go get\" remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git repository. If the Subversion repository includes a Git checkout in its pkg2 directory and some other work is done to ensure the proper ordering of operations, \"go get\" can be tricked into reusing this Git checkout for the fetch of code from pkg2. If the Subversion repository\u0027s Git checkout has malicious commands in .git/hooks/, they will execute on the system running \"go get.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15041",
"url": "https://www.suse.com/security/cve/CVE-2017-15041"
},
{
"category": "external",
"summary": "SUSE Bug 1062085 for CVE-2017-15041",
"url": "https://bugzilla.suse.com/1062085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2017-15041"
},
{
"cve": "CVE-2017-15042",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-15042"
}
],
"notes": [
{
"category": "general",
"text": "An unintended cleartext issue exists in Go before 1.8.4 and 1.9.x before 1.9.1. RFC 4954 requires that, during SMTP, the PLAIN auth scheme must only be used on network connections secured with TLS. The original implementation of smtp.PlainAuth in Go 1.0 enforced this requirement, and it was documented to do so. In 2013, upstream issue #5184, this was changed so that the server may decide whether PLAIN is acceptable. The result is that if you set up a man-in-the-middle SMTP server that doesn\u0027t advertise STARTTLS and does advertise that PLAIN auth is OK, the smtp.PlainAuth implementation sends the username and password.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-15042",
"url": "https://www.suse.com/security/cve/CVE-2017-15042"
},
{
"category": "external",
"summary": "SUSE Bug 1062087 for CVE-2017-15042",
"url": "https://bugzilla.suse.com/1062087"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2017-15042"
},
{
"cve": "CVE-2017-8932",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-8932"
}
],
"notes": [
{
"category": "general",
"text": "A bug in the standard library ScalarMult implementation of curve P-256 for amd64 architectures in Go before 1.7.6 and 1.8.x before 1.8.2 causes incorrect results to be generated for specific input points. An adaptive attack can be mounted to progressively extract the scalar input to ScalarMult by submitting crafted points and observing failures to the derive correct output. This leads to a full key recovery attack against static ECDH, as used in popular JWT libraries.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-8932",
"url": "https://www.suse.com/security/cve/CVE-2017-8932"
},
{
"category": "external",
"summary": "SUSE Bug 1040618 for CVE-2017-8932",
"url": "https://bugzilla.suse.com/1040618"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2017-8932"
},
{
"cve": "CVE-2018-16873",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16873"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to remote code execution when executed with the -u flag and the import path of a malicious Go package, or a package that imports it directly or indirectly. Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). Using custom domains, it\u0027s possible to arrange things so that a Git repository is cloned to a folder named \".git\" by using a vanity import path that ends with \"/.git\". If the Git repository root contains a \"HEAD\" file, a \"config\" file, an \"objects\" directory, a \"refs\" directory, with some work to ensure the proper ordering of operations, \"go get -u\" can be tricked into considering the parent directory as a repository root, and running Git commands on it. That will use the \"config\" file in the original Git repository root for its configuration, and if that config file contains malicious commands, they will execute on the system running \"go get -u\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16873",
"url": "https://www.suse.com/security/cve/CVE-2018-16873"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16873",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-16873"
},
{
"cve": "CVE-2018-16874",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16874"
}
],
"notes": [
{
"category": "general",
"text": "In Go before 1.10.6 and 1.11.x before 1.11.3, the \"go get\" command is vulnerable to directory traversal when executed with the import path of a malicious Go package which contains curly braces (both \u0027{\u0027 and \u0027}\u0027 characters). Specifically, it is only vulnerable in GOPATH mode, but not in module mode (the distinction is documented at https://golang.org/cmd/go/#hdr-Module_aware_go_get). The attacker can cause an arbitrary filesystem write, which can lead to code execution.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16874",
"url": "https://www.suse.com/security/cve/CVE-2018-16874"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16874",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16874"
},
{
"cve": "CVE-2018-16875",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-16875"
}
],
"notes": [
{
"category": "general",
"text": "The crypto/x509 package of Go before 1.10.6 and 1.11.x before 1.11.3 does not limit the amount of work performed for each chain verification, which might allow attackers to craft pathological inputs leading to a CPU denial of service. Go TLS servers accepting client certificates and TLS clients are affected.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-16875",
"url": "https://www.suse.com/security/cve/CVE-2018-16875"
},
{
"category": "external",
"summary": "SUSE Bug 1118897 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118897"
},
{
"category": "external",
"summary": "SUSE Bug 1118898 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118898"
},
{
"category": "external",
"summary": "SUSE Bug 1118899 for CVE-2018-16875",
"url": "https://bugzilla.suse.com/1118899"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2018-16875"
},
{
"cve": "CVE-2018-6574",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-6574"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.8.7, Go 1.9.x before 1.9.4, and Go 1.10 pre-releases before Go 1.10rc2 allow \"go get\" remote command execution during source code build, by leveraging the gcc or clang plugin feature, because -fplugin= and -plugin= arguments were not blocked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-6574",
"url": "https://www.suse.com/security/cve/CVE-2018-6574"
},
{
"category": "external",
"summary": "SUSE Bug 1080006 for CVE-2018-6574",
"url": "https://bugzilla.suse.com/1080006"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-6574"
},
{
"cve": "CVE-2019-11888",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11888"
}
],
"notes": [
{
"category": "general",
"text": "Go through 1.12.5 on Windows mishandles process creation with a nil environment in conjunction with a non-nil token, which allows attackers to obtain sensitive information or gain privileges.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11888",
"url": "https://www.suse.com/security/cve/CVE-2019-11888"
},
{
"category": "external",
"summary": "SUSE Bug 1146203 for CVE-2019-11888",
"url": "https://bugzilla.suse.com/1146203"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-11888"
},
{
"cve": "CVE-2019-14809",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-14809"
}
],
"notes": [
{
"category": "general",
"text": "net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malformed hosts in URLs, leading to an authorization bypass in some applications. This is related to a Host field with a suffix appearing in neither Hostname() nor Port(), and is related to a non-numeric port number. For example, an attacker can compose a crafted javascript:// URL that results in a hostname of google.com.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-14809",
"url": "https://www.suse.com/security/cve/CVE-2019-14809"
},
{
"category": "external",
"summary": "SUSE Bug 1146123 for CVE-2019-14809",
"url": "https://bugzilla.suse.com/1146123"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-14809"
},
{
"cve": "CVE-2019-16276",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-16276"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.12.10 and 1.13.x before 1.13.1 allow HTTP Request Smuggling.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-16276",
"url": "https://www.suse.com/security/cve/CVE-2019-16276"
},
{
"category": "external",
"summary": "SUSE Bug 1152082 for CVE-2019-16276",
"url": "https://bugzilla.suse.com/1152082"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-16276"
},
{
"cve": "CVE-2019-17596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17596"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17596",
"url": "https://www.suse.com/security/cve/CVE-2019-17596"
},
{
"category": "external",
"summary": "SUSE Bug 1154402 for CVE-2019-17596",
"url": "https://bugzilla.suse.com/1154402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-17596"
},
{
"cve": "CVE-2019-6486",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-6486"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.10.8 and 1.11.x before 1.11.5 mishandles P-521 and P-384 elliptic curves, which allows attackers to cause a denial of service (CPU consumption) or possibly conduct ECDH private key recovery attacks.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-6486",
"url": "https://www.suse.com/security/cve/CVE-2019-6486"
},
{
"category": "external",
"summary": "SUSE Bug 1123013 for CVE-2019-6486",
"url": "https://bugzilla.suse.com/1123013"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2019-6486"
},
{
"cve": "CVE-2019-9512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9512"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9512",
"url": "https://www.suse.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146099 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146099"
},
{
"category": "external",
"summary": "SUSE Bug 1146111 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146111"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9512"
},
{
"cve": "CVE-2019-9514",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9514"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to a reset flood, potentially leading to a denial of service. The attacker opens a number of streams and sends an invalid request over each stream that should solicit a stream of RST_STREAM frames from the peer. Depending on how the peer queues the RST_STREAM frames, this can consume excess memory, CPU, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9514",
"url": "https://www.suse.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "SUSE Bug 1145662 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1145662"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146095 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1146095"
},
{
"category": "external",
"summary": "SUSE Bug 1146115 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1146115"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9514",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-doc-1.12.17-4.8.x86_64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.aarch64",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.ppc64le",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.s390x",
"openSUSE Tumbleweed:go1.12-race-1.12.17-4.8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9514"
}
]
}
OPENSUSE-SU-2024:10901-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
kubernetes-apiserver-1.22.2-21.2 on GA media
Severity
Moderate
Notes
Title of the patch: kubernetes-apiserver-1.22.2-21.2 on GA media
Description of the patch: These are all security issues fixed in the kubernetes-apiserver-1.22.2-21.2 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-10901
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
7.4 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
9.8 (Critical)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
5 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4.8 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
60 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
47 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "kubernetes-apiserver-1.22.2-21.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the kubernetes-apiserver-1.22.2-21.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10901",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10901-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-5195 page",
"url": "https://www.suse.com/security/cve/CVE-2016-5195/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-8859 page",
"url": "https://www.suse.com/security/cve/CVE-2016-8859/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-1002101 page",
"url": "https://www.suse.com/security/cve/CVE-2017-1002101/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1002105 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1002105/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11247 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11247/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11249 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11249/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-11253 page",
"url": "https://www.suse.com/security/cve/CVE-2019-11253/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9512 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9512/"
}
],
"title": "kubernetes-apiserver-1.22.2-21.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10901-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kubernetes-apiserver-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-apiserver-1.22.2-21.2.aarch64",
"product_id": "kubernetes-apiserver-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"product": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"product_id": "kubernetes-apiserver-minus1-1.21.5-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-client-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-client-1.22.2-21.2.aarch64",
"product_id": "kubernetes-client-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-controller-manager-1.22.2-21.2.aarch64",
"product_id": "kubernetes-controller-manager-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"product": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"product_id": "kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-1.8.4-21.2.aarch64",
"product": {
"name": "kubernetes-coredns-1.8.4-21.2.aarch64",
"product_id": "kubernetes-coredns-1.8.4-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"product": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"product_id": "kubernetes-coredns-minus1-1.8.0-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-3.5.0-21.2.aarch64",
"product": {
"name": "kubernetes-etcd-3.5.0-21.2.aarch64",
"product_id": "kubernetes-etcd-3.5.0-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"product": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"product_id": "kubernetes-etcd-minus1-3.4.13-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-kubeadm-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-kubeadm-1.22.2-21.2.aarch64",
"product_id": "kubernetes-kubeadm-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-kubelet-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-kubelet-1.22.2-21.2.aarch64",
"product_id": "kubernetes-kubelet-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-proxy-1.22.2-21.2.aarch64",
"product_id": "kubernetes-proxy-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"product": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"product_id": "kubernetes-proxy-minus1-1.21.5-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-1.22.2-21.2.aarch64",
"product": {
"name": "kubernetes-scheduler-1.22.2-21.2.aarch64",
"product_id": "kubernetes-scheduler-1.22.2-21.2.aarch64"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"product": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"product_id": "kubernetes-scheduler-minus1-1.21.5-21.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "kubernetes-apiserver-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-apiserver-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-apiserver-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"product": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"product_id": "kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-client-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-client-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-client-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-controller-manager-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"product": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"product_id": "kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-1.8.4-21.2.ppc64le",
"product": {
"name": "kubernetes-coredns-1.8.4-21.2.ppc64le",
"product_id": "kubernetes-coredns-1.8.4-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"product": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"product_id": "kubernetes-coredns-minus1-1.8.0-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-3.5.0-21.2.ppc64le",
"product": {
"name": "kubernetes-etcd-3.5.0-21.2.ppc64le",
"product_id": "kubernetes-etcd-3.5.0-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"product": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"product_id": "kubernetes-etcd-minus1-3.4.13-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-kubeadm-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-kubelet-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-kubelet-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-kubelet-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-proxy-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-proxy-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"product": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"product_id": "kubernetes-proxy-minus1-1.21.5-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-1.22.2-21.2.ppc64le",
"product": {
"name": "kubernetes-scheduler-1.22.2-21.2.ppc64le",
"product_id": "kubernetes-scheduler-1.22.2-21.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"product": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"product_id": "kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kubernetes-apiserver-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-apiserver-1.22.2-21.2.s390x",
"product_id": "kubernetes-apiserver-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"product": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"product_id": "kubernetes-apiserver-minus1-1.21.5-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-client-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-client-1.22.2-21.2.s390x",
"product_id": "kubernetes-client-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-controller-manager-1.22.2-21.2.s390x",
"product_id": "kubernetes-controller-manager-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"product": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"product_id": "kubernetes-controller-manager-minus1-1.21.5-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-1.8.4-21.2.s390x",
"product": {
"name": "kubernetes-coredns-1.8.4-21.2.s390x",
"product_id": "kubernetes-coredns-1.8.4-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"product": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"product_id": "kubernetes-coredns-minus1-1.8.0-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-3.5.0-21.2.s390x",
"product": {
"name": "kubernetes-etcd-3.5.0-21.2.s390x",
"product_id": "kubernetes-etcd-3.5.0-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"product": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"product_id": "kubernetes-etcd-minus1-3.4.13-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-kubeadm-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-kubeadm-1.22.2-21.2.s390x",
"product_id": "kubernetes-kubeadm-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-kubelet-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-kubelet-1.22.2-21.2.s390x",
"product_id": "kubernetes-kubelet-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-proxy-1.22.2-21.2.s390x",
"product_id": "kubernetes-proxy-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"product": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"product_id": "kubernetes-proxy-minus1-1.21.5-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-1.22.2-21.2.s390x",
"product": {
"name": "kubernetes-scheduler-1.22.2-21.2.s390x",
"product_id": "kubernetes-scheduler-1.22.2-21.2.s390x"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"product": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"product_id": "kubernetes-scheduler-minus1-1.21.5-21.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kubernetes-apiserver-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-apiserver-1.22.2-21.2.x86_64",
"product_id": "kubernetes-apiserver-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"product": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"product_id": "kubernetes-apiserver-minus1-1.21.5-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-client-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-client-1.22.2-21.2.x86_64",
"product_id": "kubernetes-client-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-controller-manager-1.22.2-21.2.x86_64",
"product_id": "kubernetes-controller-manager-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"product": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"product_id": "kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-1.8.4-21.2.x86_64",
"product": {
"name": "kubernetes-coredns-1.8.4-21.2.x86_64",
"product_id": "kubernetes-coredns-1.8.4-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"product": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"product_id": "kubernetes-coredns-minus1-1.8.0-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-3.5.0-21.2.x86_64",
"product": {
"name": "kubernetes-etcd-3.5.0-21.2.x86_64",
"product_id": "kubernetes-etcd-3.5.0-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"product": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"product_id": "kubernetes-etcd-minus1-3.4.13-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-kubeadm-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-kubeadm-1.22.2-21.2.x86_64",
"product_id": "kubernetes-kubeadm-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-kubelet-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-kubelet-1.22.2-21.2.x86_64",
"product_id": "kubernetes-kubelet-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-proxy-1.22.2-21.2.x86_64",
"product_id": "kubernetes-proxy-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"product": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"product_id": "kubernetes-proxy-minus1-1.21.5-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-1.22.2-21.2.x86_64",
"product": {
"name": "kubernetes-scheduler-1.22.2-21.2.x86_64",
"product_id": "kubernetes-scheduler-1.22.2-21.2.x86_64"
}
},
{
"category": "product_version",
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.x86_64",
"product": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.x86_64",
"product_id": "kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-apiserver-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-apiserver-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-apiserver-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-apiserver-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64"
},
"product_reference": "kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le"
},
"product_reference": "kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x"
},
"product_reference": "kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-apiserver-minus1-1.21.5-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64"
},
"product_reference": "kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-client-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-client-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-client-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-client-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-client-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-client-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-client-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-client-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-controller-manager-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-controller-manager-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-controller-manager-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64"
},
"product_reference": "kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le"
},
"product_reference": "kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x"
},
"product_reference": "kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64"
},
"product_reference": "kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-1.8.4-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64"
},
"product_reference": "kubernetes-coredns-1.8.4-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-1.8.4-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le"
},
"product_reference": "kubernetes-coredns-1.8.4-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-1.8.4-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x"
},
"product_reference": "kubernetes-coredns-1.8.4-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-1.8.4-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64"
},
"product_reference": "kubernetes-coredns-1.8.4-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64"
},
"product_reference": "kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le"
},
"product_reference": "kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x"
},
"product_reference": "kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-coredns-minus1-1.8.0-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64"
},
"product_reference": "kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-3.5.0-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64"
},
"product_reference": "kubernetes-etcd-3.5.0-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-3.5.0-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le"
},
"product_reference": "kubernetes-etcd-3.5.0-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-3.5.0-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x"
},
"product_reference": "kubernetes-etcd-3.5.0-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-3.5.0-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64"
},
"product_reference": "kubernetes-etcd-3.5.0-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64"
},
"product_reference": "kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le"
},
"product_reference": "kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x"
},
"product_reference": "kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-etcd-minus1-3.4.13-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64"
},
"product_reference": "kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubeadm-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-kubeadm-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubeadm-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubeadm-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-kubeadm-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubeadm-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-kubeadm-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubelet-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-kubelet-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubelet-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-kubelet-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubelet-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-kubelet-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-kubelet-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-kubelet-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-proxy-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-proxy-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-proxy-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-proxy-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64"
},
"product_reference": "kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le"
},
"product_reference": "kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x"
},
"product_reference": "kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-proxy-minus1-1.21.5-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64"
},
"product_reference": "kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-1.22.2-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64"
},
"product_reference": "kubernetes-scheduler-1.22.2-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-1.22.2-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le"
},
"product_reference": "kubernetes-scheduler-1.22.2-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-1.22.2-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x"
},
"product_reference": "kubernetes-scheduler-1.22.2-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-1.22.2-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64"
},
"product_reference": "kubernetes-scheduler-1.22.2-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64"
},
"product_reference": "kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le"
},
"product_reference": "kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x"
},
"product_reference": "kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kubernetes-scheduler-minus1-1.21.5-21.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
},
"product_reference": "kubernetes-scheduler-minus1-1.21.5-21.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-5195",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-5195"
}
],
"notes": [
{
"category": "general",
"text": "Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by leveraging incorrect handling of a copy-on-write (COW) feature to write to a read-only memory mapping, as exploited in the wild in October 2016, aka \"Dirty COW.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-5195",
"url": "https://www.suse.com/security/cve/CVE-2016-5195"
},
{
"category": "external",
"summary": "SUSE Bug 1004418 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1004418"
},
{
"category": "external",
"summary": "SUSE Bug 1004419 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1004419"
},
{
"category": "external",
"summary": "SUSE Bug 1004436 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1004436"
},
{
"category": "external",
"summary": "SUSE Bug 1006323 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1006323"
},
{
"category": "external",
"summary": "SUSE Bug 1006695 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1006695"
},
{
"category": "external",
"summary": "SUSE Bug 1007291 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1007291"
},
{
"category": "external",
"summary": "SUSE Bug 1008110 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1008110"
},
{
"category": "external",
"summary": "SUSE Bug 1030118 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1030118"
},
{
"category": "external",
"summary": "SUSE Bug 1046453 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1046453"
},
{
"category": "external",
"summary": "SUSE Bug 1069496 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1069496"
},
{
"category": "external",
"summary": "SUSE Bug 1149725 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/1149725"
},
{
"category": "external",
"summary": "SUSE Bug 870618 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/870618"
},
{
"category": "external",
"summary": "SUSE Bug 986445 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/986445"
},
{
"category": "external",
"summary": "SUSE Bug 998689 for CVE-2016-5195",
"url": "https://bugzilla.suse.com/998689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2016-5195"
},
{
"cve": "CVE-2016-8859",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-8859"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the TRE library and musl libc allow attackers to cause memory corruption via a large number of (1) states or (2) tags, which triggers an out-of-bounds write.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-8859",
"url": "https://www.suse.com/security/cve/CVE-2016-8859"
},
{
"category": "external",
"summary": "SUSE Bug 1005483 for CVE-2016-8859",
"url": "https://bugzilla.suse.com/1005483"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2016-8859"
},
{
"cve": "CVE-2017-1002101",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-1002101"
}
],
"notes": [
{
"category": "general",
"text": "In Kubernetes versions 1.3.x, 1.4.x, 1.5.x, 1.6.x and prior to versions 1.7.14, 1.8.9 and 1.9.4 containers using subpath volume mounts with any volume type (including non-privileged pods, subject to file permissions) can access files/directories outside of the volume, including the host\u0027s filesystem.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-1002101",
"url": "https://www.suse.com/security/cve/CVE-2017-1002101"
},
{
"category": "external",
"summary": "SUSE Bug 1084923 for CVE-2017-1002101",
"url": "https://bugzilla.suse.com/1084923"
},
{
"category": "external",
"summary": "SUSE Bug 1085007 for CVE-2017-1002101",
"url": "https://bugzilla.suse.com/1085007"
},
{
"category": "external",
"summary": "SUSE Bug 1085009 for CVE-2017-1002101",
"url": "https://bugzilla.suse.com/1085009"
},
{
"category": "external",
"summary": "SUSE Bug 1096726 for CVE-2017-1002101",
"url": "https://bugzilla.suse.com/1096726"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2017-1002101"
},
{
"cve": "CVE-2018-1002105",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1002105"
}
],
"notes": [
{
"category": "general",
"text": "In all Kubernetes versions prior to v1.10.11, v1.11.5, and v1.12.3, incorrect handling of error responses to proxied upgrade requests in the kube-apiserver allowed specially crafted requests to establish a connection through the Kubernetes API server to backend servers, then send arbitrary requests over the same connection directly to the backend, authenticated with the Kubernetes API server\u0027s TLS credentials used to establish the backend connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1002105",
"url": "https://www.suse.com/security/cve/CVE-2018-1002105"
},
{
"category": "external",
"summary": "SUSE Bug 1118198 for CVE-2018-1002105",
"url": "https://bugzilla.suse.com/1118198"
},
{
"category": "external",
"summary": "SUSE Bug 1118260 for CVE-2018-1002105",
"url": "https://bugzilla.suse.com/1118260"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2018-1002105"
},
{
"cve": "CVE-2019-11247",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11247"
}
],
"notes": [
{
"category": "general",
"text": "The Kubernetes kube-apiserver mistakenly allows access to a cluster-scoped custom resource if the request is made as if the resource were namespaced. Authorizations for the resource accessed in this manner are enforced using roles and role bindings within the namespace, meaning that a user with access only to a resource in one namespace could create, view update or delete the cluster-scoped resource (according to their namespace role privileges). Kubernetes affected versions include versions prior to 1.13.9, versions prior to 1.14.5, versions prior to 1.15.2, and versions 1.7, 1.8, 1.9, 1.10, 1.11, 1.12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11247",
"url": "https://www.suse.com/security/cve/CVE-2019-11247"
},
{
"category": "external",
"summary": "SUSE Bug 1142423 for CVE-2019-11247",
"url": "https://bugzilla.suse.com/1142423"
},
{
"category": "external",
"summary": "SUSE Bug 1142434 for CVE-2019-11247",
"url": "https://bugzilla.suse.com/1142434"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-11247"
},
{
"cve": "CVE-2019-11249",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11249"
}
],
"notes": [
{
"category": "general",
"text": "The kubectl cp command allows copying files between containers and the user machine. To copy files from a container, Kubernetes runs tar inside the container to create a tar archive, copies it over the network, and kubectl unpacks it on the user\u0027s machine. If the tar binary in the container is malicious, it could run any code and output unexpected, malicious results. An attacker could use this to write files to any path on the user\u0027s machine when kubectl cp is called, limited only by the system permissions of the local user. Kubernetes affected versions include versions prior to 1.13.9, versions prior to 1.14.5, versions prior to 1.15.2, and versions 1.1, 1.2, 1.4, 1.4, 1.5, 1.6, 1.7, 1.8, 1.9, 1.10, 1.11, 1.12.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11249",
"url": "https://www.suse.com/security/cve/CVE-2019-11249"
},
{
"category": "external",
"summary": "SUSE Bug 1144507 for CVE-2019-11249",
"url": "https://bugzilla.suse.com/1144507"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-11249"
},
{
"cve": "CVE-2019-11253",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-11253"
}
],
"notes": [
{
"category": "general",
"text": "Improper input validation in the Kubernetes API server in versions v1.0-1.12 and versions prior to v1.13.12, v1.14.8, v1.15.5, and v1.16.2 allows authorized users to send malicious YAML or JSON payloads, causing the API server to consume excessive CPU or memory, potentially crashing and becoming unavailable. Prior to v1.14.0, default RBAC policy authorized anonymous users to submit requests that could trigger this vulnerability. Clusters upgraded from a version prior to v1.14.0 keep the more permissive policy by default for backwards compatibility.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-11253",
"url": "https://www.suse.com/security/cve/CVE-2019-11253"
},
{
"category": "external",
"summary": "SUSE Bug 1152861 for CVE-2019-11253",
"url": "https://bugzilla.suse.com/1152861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-11253"
},
{
"cve": "CVE-2019-9512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9512"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9512",
"url": "https://www.suse.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146099 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146099"
},
{
"category": "external",
"summary": "SUSE Bug 1146111 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146111"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-apiserver-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-client-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-controller-manager-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-1.8.4-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-coredns-minus1-1.8.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-3.5.0-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-etcd-minus1-3.4.13-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubeadm-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-kubelet-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-proxy-minus1-1.21.5-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-1.22.2-21.2.x86_64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.aarch64",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.ppc64le",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.s390x",
"openSUSE Tumbleweed:kubernetes-scheduler-minus1-1.21.5-21.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9512"
}
]
}
OPENSUSE-SU-2024:11098-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
notary-0.7.0-1.2 on GA media
Severity
Moderate
Notes
Title of the patch: notary-0.7.0-1.2 on GA media
Description of the patch: These are all security issues fixed in the notary-0.7.0-1.2 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11098
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
11 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "notary-0.7.0-1.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the notary-0.7.0-1.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11098",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11098-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-17596 page",
"url": "https://www.suse.com/security/cve/CVE-2019-17596/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9512 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9512/"
}
],
"title": "notary-0.7.0-1.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11098-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "notary-0.7.0-1.2.aarch64",
"product": {
"name": "notary-0.7.0-1.2.aarch64",
"product_id": "notary-0.7.0-1.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "notary-0.7.0-1.2.ppc64le",
"product": {
"name": "notary-0.7.0-1.2.ppc64le",
"product_id": "notary-0.7.0-1.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "notary-0.7.0-1.2.s390x",
"product": {
"name": "notary-0.7.0-1.2.s390x",
"product_id": "notary-0.7.0-1.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "notary-0.7.0-1.2.x86_64",
"product": {
"name": "notary-0.7.0-1.2.x86_64",
"product_id": "notary-0.7.0-1.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "notary-0.7.0-1.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64"
},
"product_reference": "notary-0.7.0-1.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "notary-0.7.0-1.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le"
},
"product_reference": "notary-0.7.0-1.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "notary-0.7.0-1.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:notary-0.7.0-1.2.s390x"
},
"product_reference": "notary-0.7.0-1.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "notary-0.7.0-1.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
},
"product_reference": "notary-0.7.0-1.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-17596",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-17596"
}
],
"notes": [
{
"category": "general",
"text": "Go before 1.12.11 and 1.3.x before 1.13.2 can panic upon an attempt to process network traffic containing an invalid DSA public key. There are several attack scenarios, such as traffic from a client to a server that verifies client certificates.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-17596",
"url": "https://www.suse.com/security/cve/CVE-2019-17596"
},
{
"category": "external",
"summary": "SUSE Bug 1154402 for CVE-2019-17596",
"url": "https://bugzilla.suse.com/1154402"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-17596"
},
{
"cve": "CVE-2019-9512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9512"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9512",
"url": "https://www.suse.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146099 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146099"
},
{
"category": "external",
"summary": "SUSE Bug 1146111 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146111"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:notary-0.7.0-1.2.aarch64",
"openSUSE Tumbleweed:notary-0.7.0-1.2.ppc64le",
"openSUSE Tumbleweed:notary-0.7.0-1.2.s390x",
"openSUSE Tumbleweed:notary-0.7.0-1.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9512"
}
]
}
OPENSUSE-SU-2024:11212-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
python-Twisted-doc-21.7.0-3.2 on GA media
Severity
Moderate
Notes
Title of the patch: python-Twisted-doc-21.7.0-3.2 on GA media
Description of the patch: These are all security issues fixed in the python-Twisted-doc-21.7.0-3.2 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11212
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
6.1 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
6.5 (Medium)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
14 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python-Twisted-doc-21.7.0-3.2 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python-Twisted-doc-21.7.0-3.2 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11212",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11212-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12387 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12387/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-12855 page",
"url": "https://www.suse.com/security/cve/CVE-2019-12855/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2019-9512 page",
"url": "https://www.suse.com/security/cve/CVE-2019-9512/"
}
],
"title": "python-Twisted-doc-21.7.0-3.2 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11212-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python-Twisted-doc-21.7.0-3.2.aarch64",
"product": {
"name": "python-Twisted-doc-21.7.0-3.2.aarch64",
"product_id": "python-Twisted-doc-21.7.0-3.2.aarch64"
}
},
{
"category": "product_version",
"name": "python36-Twisted-21.7.0-3.2.aarch64",
"product": {
"name": "python36-Twisted-21.7.0-3.2.aarch64",
"product_id": "python36-Twisted-21.7.0-3.2.aarch64"
}
},
{
"category": "product_version",
"name": "python38-Twisted-21.7.0-3.2.aarch64",
"product": {
"name": "python38-Twisted-21.7.0-3.2.aarch64",
"product_id": "python38-Twisted-21.7.0-3.2.aarch64"
}
},
{
"category": "product_version",
"name": "python39-Twisted-21.7.0-3.2.aarch64",
"product": {
"name": "python39-Twisted-21.7.0-3.2.aarch64",
"product_id": "python39-Twisted-21.7.0-3.2.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python-Twisted-doc-21.7.0-3.2.ppc64le",
"product": {
"name": "python-Twisted-doc-21.7.0-3.2.ppc64le",
"product_id": "python-Twisted-doc-21.7.0-3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python36-Twisted-21.7.0-3.2.ppc64le",
"product": {
"name": "python36-Twisted-21.7.0-3.2.ppc64le",
"product_id": "python36-Twisted-21.7.0-3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python38-Twisted-21.7.0-3.2.ppc64le",
"product": {
"name": "python38-Twisted-21.7.0-3.2.ppc64le",
"product_id": "python38-Twisted-21.7.0-3.2.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-Twisted-21.7.0-3.2.ppc64le",
"product": {
"name": "python39-Twisted-21.7.0-3.2.ppc64le",
"product_id": "python39-Twisted-21.7.0-3.2.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python-Twisted-doc-21.7.0-3.2.s390x",
"product": {
"name": "python-Twisted-doc-21.7.0-3.2.s390x",
"product_id": "python-Twisted-doc-21.7.0-3.2.s390x"
}
},
{
"category": "product_version",
"name": "python36-Twisted-21.7.0-3.2.s390x",
"product": {
"name": "python36-Twisted-21.7.0-3.2.s390x",
"product_id": "python36-Twisted-21.7.0-3.2.s390x"
}
},
{
"category": "product_version",
"name": "python38-Twisted-21.7.0-3.2.s390x",
"product": {
"name": "python38-Twisted-21.7.0-3.2.s390x",
"product_id": "python38-Twisted-21.7.0-3.2.s390x"
}
},
{
"category": "product_version",
"name": "python39-Twisted-21.7.0-3.2.s390x",
"product": {
"name": "python39-Twisted-21.7.0-3.2.s390x",
"product_id": "python39-Twisted-21.7.0-3.2.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python-Twisted-doc-21.7.0-3.2.x86_64",
"product": {
"name": "python-Twisted-doc-21.7.0-3.2.x86_64",
"product_id": "python-Twisted-doc-21.7.0-3.2.x86_64"
}
},
{
"category": "product_version",
"name": "python36-Twisted-21.7.0-3.2.x86_64",
"product": {
"name": "python36-Twisted-21.7.0-3.2.x86_64",
"product_id": "python36-Twisted-21.7.0-3.2.x86_64"
}
},
{
"category": "product_version",
"name": "python38-Twisted-21.7.0-3.2.x86_64",
"product": {
"name": "python38-Twisted-21.7.0-3.2.x86_64",
"product_id": "python38-Twisted-21.7.0-3.2.x86_64"
}
},
{
"category": "product_version",
"name": "python39-Twisted-21.7.0-3.2.x86_64",
"product": {
"name": "python39-Twisted-21.7.0-3.2.x86_64",
"product_id": "python39-Twisted-21.7.0-3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Twisted-doc-21.7.0-3.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64"
},
"product_reference": "python-Twisted-doc-21.7.0-3.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Twisted-doc-21.7.0-3.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le"
},
"product_reference": "python-Twisted-doc-21.7.0-3.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Twisted-doc-21.7.0-3.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x"
},
"product_reference": "python-Twisted-doc-21.7.0-3.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-Twisted-doc-21.7.0-3.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64"
},
"product_reference": "python-Twisted-doc-21.7.0-3.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-Twisted-21.7.0-3.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64"
},
"product_reference": "python36-Twisted-21.7.0-3.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-Twisted-21.7.0-3.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le"
},
"product_reference": "python36-Twisted-21.7.0-3.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-Twisted-21.7.0-3.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x"
},
"product_reference": "python36-Twisted-21.7.0-3.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-Twisted-21.7.0-3.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64"
},
"product_reference": "python36-Twisted-21.7.0-3.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-Twisted-21.7.0-3.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64"
},
"product_reference": "python38-Twisted-21.7.0-3.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-Twisted-21.7.0-3.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le"
},
"product_reference": "python38-Twisted-21.7.0-3.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-Twisted-21.7.0-3.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x"
},
"product_reference": "python38-Twisted-21.7.0-3.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-Twisted-21.7.0-3.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64"
},
"product_reference": "python38-Twisted-21.7.0-3.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-Twisted-21.7.0-3.2.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64"
},
"product_reference": "python39-Twisted-21.7.0-3.2.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-Twisted-21.7.0-3.2.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le"
},
"product_reference": "python39-Twisted-21.7.0-3.2.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-Twisted-21.7.0-3.2.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x"
},
"product_reference": "python39-Twisted-21.7.0-3.2.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-Twisted-21.7.0-3.2.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
},
"product_reference": "python39-Twisted-21.7.0-3.2.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-12387",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12387"
}
],
"notes": [
{
"category": "general",
"text": "In Twisted before 19.2.1, twisted.web did not validate or sanitize URIs or HTTP methods, allowing an attacker to inject invalid characters such as CRLF.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12387",
"url": "https://www.suse.com/security/cve/CVE-2019-12387"
},
{
"category": "external",
"summary": "SUSE Bug 1137825 for CVE-2019-12387",
"url": "https://bugzilla.suse.com/1137825"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-12387"
},
{
"cve": "CVE-2019-12855",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-12855"
}
],
"notes": [
{
"category": "general",
"text": "In words.protocols.jabber.xmlstream in Twisted through 19.2.1, XMPP support did not verify certificates when used with TLS, allowing an attacker to MITM connections.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-12855",
"url": "https://www.suse.com/security/cve/CVE-2019-12855"
},
{
"category": "external",
"summary": "SUSE Bug 1138461 for CVE-2019-12855",
"url": "https://bugzilla.suse.com/1138461"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2019-12855"
},
{
"cve": "CVE-2019-9512",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2019-9512"
}
],
"notes": [
{
"category": "general",
"text": "Some HTTP/2 implementations are vulnerable to ping floods, potentially leading to a denial of service. The attacker sends continual pings to an HTTP/2 peer, causing the peer to build an internal queue of responses. Depending on how efficiently this data is queued, this can consume excess CPU, memory, or both.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2019-9512",
"url": "https://www.suse.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "SUSE Bug 1145663 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1145663"
},
{
"category": "external",
"summary": "SUSE Bug 1146099 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146099"
},
{
"category": "external",
"summary": "SUSE Bug 1146111 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1146111"
},
{
"category": "external",
"summary": "SUSE Bug 1147142 for CVE-2019-9512",
"url": "https://bugzilla.suse.com/1147142"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python-Twisted-doc-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python36-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python38-Twisted-21.7.0-3.2.x86_64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.aarch64",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.ppc64le",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.s390x",
"openSUSE Tumbleweed:python39-Twisted-21.7.0-3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2019-9512"
}
]
}
RHBA-2019:2819
Vulnerability from csaf_redhat - Published: 2019-09-25 06:26 - Updated: 2026-04-28 06:26Summary
Red Hat Bug Fix Advisory: OpenShift Container Platform 4.1.17 packages update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 4.1.17 is now available with
updates to packages and images that fix several bugs.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat
OpenShift Container Platform 4.1.17. See the following advisory for the
container images for this release:
https://access.redhat.com/errata/RHBA-2019:2820
All OpenShift Container Platform 4.1 users are advised to upgrade to these
updated packages and images.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
Known not affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64 | — |
Threats
Impact
Important
A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch | — |
Vendor Fix
fix
|
Known not affected
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64 | — | ||
| Unresolved product id: 8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64 | — |
Threats
Impact
Important
References
16 references
Acknowledgments
the Envoy security team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.1.17 is now available with\nupdates to packages and images that fix several bugs.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat\nOpenShift Container Platform 4.1.17. See the following advisory for the\ncontainer images for this release:\n\nhttps://access.redhat.com/errata/RHBA-2019:2820\n\nAll OpenShift Container Platform 4.1 users are advised to upgrade to these\nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2019:2819",
"url": "https://access.redhat.com/errata/RHBA-2019:2819"
},
{
"category": "external",
"summary": "1751890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1751890"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhba-2019_2819.json"
}
],
"title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 4.1.17 packages update",
"tracking": {
"current_release_date": "2026-04-28T06:26:03+00:00",
"generator": {
"date": "2026-04-28T06:26:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHBA-2019:2819",
"initial_release_date": "2019-09-25T06:26:23+00:00",
"revision_history": [
{
"date": "2019-09-25T06:26:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-09-25T06:26:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-28T06:26:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.1.17-201909170941.git.1.9b9b46b.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.1.17-201909170941.git.1.9b9b46b.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product": {
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_id": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.1.17-201909170941.git.0.2447974.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_id": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.1.17-201909170941.git.0.2447974.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_id": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.1.17-201909170941.git.0.2447974.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "ansible-service-broker-1:1.4.4-2.el7.x86_64",
"product": {
"name": "ansible-service-broker-1:1.4.4-2.el7.x86_64",
"product_id": "ansible-service-broker-1:1.4.4-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-service-broker@1.4.4-2.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product": {
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_id": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.1.17-201909170941.git.0.2447974.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_id": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.1.17-201909170941.git.0.2447974.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_id": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.1.17-201909170941.git.0.2447974.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product": {
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_id": "podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.0.2-2.dev.git96ccc2e.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product": {
"name": "podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_id": "podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debugsource@1.0.2-2.dev.git96ccc2e.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product": {
"name": "podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_id": "podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-debuginfo@1.0.2-2.dev.git96ccc2e.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"product": {
"name": "containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"product_id": "containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containers-common@0.1.32-5.git1715c90.el8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"product": {
"name": "skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"product_id": "skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.32-5.git1715c90.el8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64",
"product": {
"name": "skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64",
"product_id": "skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@0.1.32-5.git1715c90.el8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"product": {
"name": "skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"product_id": "skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@0.1.32-5.git1715c90.el8?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"product": {
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"product_id": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.1.17-201909170941.git.1.9b9b46b.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"product": {
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"product_id": "openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.1.17-201909170941.git.0.2447974.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"product": {
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"product_id": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible@4.1.17-201909170941.git.162.79c271c.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "ansible-service-broker-1:1.4.4-2.el7.src",
"product": {
"name": "ansible-service-broker-1:1.4.4-2.el7.src",
"product_id": "ansible-service-broker-1:1.4.4-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-service-broker@1.4.4-2.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"product": {
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"product_id": "openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.1.17-201909170941.git.0.2447974.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"product": {
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"product_id": "podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman@1.0.2-2.dev.git96ccc2e.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "skopeo-1:0.1.32-5.git1715c90.el8.src",
"product": {
"name": "skopeo-1:0.1.32-5.git1715c90.el8.src",
"product_id": "skopeo-1:0.1.32-5.git1715c90.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@0.1.32-5.git1715c90.el8?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"product": {
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"product_id": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible@4.1.17-201909170941.git.162.79c271c.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"product": {
"name": "ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"product_id": "ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-service-broker-container-scripts@1.4.4-2.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"product": {
"name": "ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"product_id": "ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/ansible-service-broker-selinux@1.4.4-2.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"product": {
"name": "automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"product_id": "automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-broker-apb-role@1.4.4-2.el7?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"product": {
"name": "podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"product_id": "podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/podman-docker@1.0.2-2.dev.git96ccc2e.el8?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-service-broker-1:1.4.4-2.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src"
},
"product_reference": "ansible-service-broker-1:1.4.4-2.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-service-broker-1:1.4.4-2.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64"
},
"product_reference": "ansible-service-broker-1:1.4.4-2.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch"
},
"product_reference": "ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "ansible-service-broker-selinux-1:1.4.4-2.el7.noarch as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch"
},
"product_reference": "ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src"
},
"product_reference": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-broker-apb-role-1:1.4.4-2.el7.noarch as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch"
},
"product_reference": "automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src"
},
"product_reference": "openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch"
},
"product_reference": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src"
},
"product_reference": "openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64"
},
"product_reference": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containers-common-1:0.1.32-5.git1715c90.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64"
},
"product_reference": "containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.1.17-201909170941.git.0.2447974.el8.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src"
},
"product_reference": "openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64"
},
"product_reference": "openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src"
},
"product_reference": "podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64"
},
"product_reference": "podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64"
},
"product_reference": "podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64"
},
"product_reference": "podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch"
},
"product_reference": "podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.32-5.git1715c90.el8.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src"
},
"product_reference": "skopeo-1:0.1.32-5.git1715c90.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-1:0.1.32-5.git1715c90.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64"
},
"product_reference": "skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64"
},
"product_reference": "skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
},
"product_reference": "skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch"
],
"known_not_affected": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-25T06:26:23+00:00",
"details": "Before applying this update, ensure all previously released errata\nrelevant to your system have been applied.\n\nFor OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.17, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2019:2819"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch"
],
"known_not_affected": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-25T06:26:23+00:00",
"details": "Before applying this update, ensure all previously released errata\nrelevant to your system have been applied.\n\nFor OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.17, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2019:2819"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.src",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-1:1.4.4-2.el7.x86_64",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-container-scripts-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:ansible-service-broker-selinux-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.17-201909170941.git.1.9b9b46b.el7.x86_64",
"7Server-RH7-RHOSE-4.1:automation-broker-apb-role-1:1.4.4-2.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.noarch",
"7Server-RH7-RHOSE-4.1:openshift-ansible-0:4.1.17-201909170941.git.162.79c271c.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el7.x86_64",
"8Base-RHOSE-4.1:containers-common-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.17-201909170941.git.0.2447974.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.17-201909170941.git.0.2447974.el8.x86_64",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.src",
"8Base-RHOSE-4.1:podman-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debuginfo-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-debugsource-0:1.0.2-2.dev.git96ccc2e.el8.x86_64",
"8Base-RHOSE-4.1:podman-docker-0:1.0.2-2.dev.git96ccc2e.el8.noarch",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.src",
"8Base-RHOSE-4.1:skopeo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debuginfo-1:0.1.32-5.git1715c90.el8.x86_64",
"8Base-RHOSE-4.1:skopeo-debugsource-1:0.1.32-5.git1715c90.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
}
]
}
RHBA-2019:3139
Vulnerability from csaf_redhat - Published: 2019-10-18 02:02 - Updated: 2026-04-28 06:26Summary
Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 3.11.153 is now available with
updates to packages and images that fix several bugs and add enhancements.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform 3.11.153. See the following advisory for the container images for
this release:
https://access.redhat.com/errata/RHBA-2019:3138
This release fixes the following bugs:
* NSX role templates referenced module output based on previous data structure. Templates were not properly populated. With this bug fix, the templates were updated to use the updated data structure and the templates are now generated with clusterIP as expected. (BZ#1753890)
All OpenShift Container Platform 3.11 users are advised to upgrade to these
updated packages and images.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64 | — |
Vendor Fix
fix
|
Known not affected
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch | — |
Threats
Impact
Important
A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
37 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64 | — |
Vendor Fix
fix
|
Known not affected
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64 | — | ||
| Unresolved product id: 7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch | — |
Threats
Impact
Important
References
35 references
Acknowledgments
the Envoy security team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 3.11.153 is now available with\nupdates to packages and images that fix several bugs and add enhancements.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container\nPlatform 3.11.153. See the following advisory for the container images for\nthis release:\n\nhttps://access.redhat.com/errata/RHBA-2019:3138\n\nThis release fixes the following bugs:\n\n* NSX role templates referenced module output based on previous data structure. Templates were not properly populated. With this bug fix, the templates were updated to use the updated data structure and the templates are now generated with clusterIP as expected. (BZ#1753890)\n\nAll OpenShift Container Platform 3.11 users are advised to upgrade to these\nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHBA-2019:3139",
"url": "https://access.redhat.com/errata/RHBA-2019:3139"
},
{
"category": "external",
"summary": "1645725",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1645725"
},
{
"category": "external",
"summary": "1651583",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1651583"
},
{
"category": "external",
"summary": "1678100",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1678100"
},
{
"category": "external",
"summary": "1720174",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1720174"
},
{
"category": "external",
"summary": "1723924",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1723924"
},
{
"category": "external",
"summary": "1734385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1734385"
},
{
"category": "external",
"summary": "1741679",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741679"
},
{
"category": "external",
"summary": "1747305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1747305"
},
{
"category": "external",
"summary": "1751125",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1751125"
},
{
"category": "external",
"summary": "1751975",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1751975"
},
{
"category": "external",
"summary": "1752532",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1752532"
},
{
"category": "external",
"summary": "1753890",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1753890"
},
{
"category": "external",
"summary": "1754788",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1754788"
},
{
"category": "external",
"summary": "1754968",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1754968"
},
{
"category": "external",
"summary": "1758156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758156"
},
{
"category": "external",
"summary": "1758235",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758235"
},
{
"category": "external",
"summary": "1758267",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1758267"
},
{
"category": "external",
"summary": "1759344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1759344"
},
{
"category": "external",
"summary": "1759837",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1759837"
},
{
"category": "external",
"summary": "1760166",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1760166"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhba-2019_3139.json"
}
],
"title": "Red Hat Bug Fix Advisory: OpenShift Container Platform 3.11 bug fix and enhancement update",
"tracking": {
"current_release_date": "2026-04-28T06:26:04+00:00",
"generator": {
"date": "2026-04-28T06:26:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHBA-2019:3139",
"initial_release_date": "2019-10-18T02:02:14+00:00",
"revision_history": [
{
"date": "2019-10-18T02:02:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-10-18T02:02:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-28T06:26:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.11",
"product": {
"name": "Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.11::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "apb-0:1.9.8-1.el7.ppc64le",
"product": {
"name": "apb-0:1.9.8-1.el7.ppc64le",
"product_id": "apb-0:1.9.8-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apb@1.9.8-1.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product_id": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.11.1-2.rhaos3.11.gitedabfb5.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product": {
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product_id": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.11.1-2.rhaos3.11.gitedabfb5.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"product": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"product_id": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-monitor-project-lifecycle@3.11.51-2.git.59.7b59e29.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product_id": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.153-1.git.1.e227636.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product": {
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product_id": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@3.11.153-1.git.1.e227636.el7?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-hyperkube@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-hypershift@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-template-service-broker@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product": {
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_id": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.11.153-1.git.0.aaf3f71.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"product": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"product_id": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.153-1.git.1.bde8a94.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"product": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"product_id": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.153-1.git.1.69ca8e7.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"product_id": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.153-1.git.1.74c6913.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"product": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"product_id": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.153-1.git.1.a8cdc59.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"product": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"product_id": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.153-1.git.1.7fbf681.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"product": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"product_id": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.153-1.git.1.208da50.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"product": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"product_id": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.153-1.git.1.7b8d88b.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"product": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"product_id": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.153-1.git.1.a814e13.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"product": {
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"product_id": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus-alertmanager@3.11.153-1.git.1.2768abd.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"product": {
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"product_id": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus-node-exporter@3.11.153-1.git.1.0e8ef36.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"product": {
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"product_id": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus@3.11.153-1.git.1.7a486a2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"product": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"product_id": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.153-1.git.1.a190220.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"product": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"product_id": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.153-1.git.1.5f83714.el7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "apb-0:1.9.8-1.el7.x86_64",
"product": {
"name": "apb-0:1.9.8-1.el7.x86_64",
"product_id": "apb-0:1.9.8-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apb@1.9.8-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product_id": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.11.1-2.rhaos3.11.gitedabfb5.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product": {
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product_id": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools-debuginfo@1.11.1-2.rhaos3.11.gitedabfb5.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"product": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"product_id": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-monitor-project-lifecycle@3.11.51-2.git.59.7b59e29.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.153-1.git.1.e227636.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@3.11.153-1.git.1.e227636.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-hyperkube@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-hypershift@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-template-service-broker@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.11.153-1.git.0.aaf3f71.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"product": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"product_id": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.153-1.git.1.bde8a94.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"product": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"product_id": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.153-1.git.1.69ca8e7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.153-1.git.1.74c6913.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"product": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"product_id": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.153-1.git.1.a8cdc59.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"product": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"product_id": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.153-1.git.1.7fbf681.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"product": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"product_id": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.153-1.git.1.208da50.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"product": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"product_id": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.153-1.git.1.7b8d88b.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"product": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"product_id": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.153-1.git.1.a814e13.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"product": {
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"product_id": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus-alertmanager@3.11.153-1.git.1.2768abd.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"product": {
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"product_id": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus-node-exporter@3.11.153-1.git.1.0e8ef36.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"product": {
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"product_id": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/prometheus@3.11.153-1.git.1.7a486a2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"product": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"product_id": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.153-1.git.1.a190220.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"product": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"product_id": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.153-1.git.1.5f83714.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "apb-0:1.9.8-1.el7.src",
"product": {
"name": "apb-0:1.9.8-1.el7.src",
"product_id": "apb-0:1.9.8-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apb@1.9.8-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"product": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"product_id": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cri-tools@1.11.1-2.rhaos3.11.gitedabfb5.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"product": {
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"product_id": "jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jenkins-2-plugins@3.11.1568994366-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jenkins-0:2.176.3.1569349414-1.el7.src",
"product": {
"name": "jenkins-0:2.176.3.1569349414-1.el7.src",
"product_id": "jenkins-0:2.176.3.1569349414-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jenkins@2.176.3.1569349414-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"product": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"product_id": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-monitor-project-lifecycle@3.11.51-2.git.59.7b59e29.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "mediawiki-0:1.27.7-1.el7.src",
"product": {
"name": "mediawiki-0:1.27.7-1.el7.src",
"product_id": "mediawiki-0:1.27.7-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mediawiki@1.27.7-1.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"product": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"product_id": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@3.11.153-1.git.1.e227636.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"product": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"product_id": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.11.153-1.git.0.aaf3f71.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"product": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"product_id": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-cluster-autoscaler@3.11.153-1.git.1.bde8a94.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"product": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"product_id": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-descheduler@3.11.153-1.git.1.69ca8e7.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"product_id": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.11.153-1.git.1.74c6913.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"product": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"product_id": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-metrics-server@3.11.153-1.git.1.a8cdc59.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"product": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"product_id": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node-problem-detector@3.11.153-1.git.1.7fbf681.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"product": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"product_id": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-service-idler@3.11.153-1.git.1.208da50.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"product": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"product_id": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-web-console@3.11.153-1.git.1.7b8d88b.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"product": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"product_id": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-openshift-oauth-proxy@3.11.153-1.git.1.a814e13.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"product": {
"name": "golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"product_id": "golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-alertmanager@3.11.153-1.git.1.2768abd.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"product": {
"name": "golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"product_id": "golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-node_exporter@3.11.153-1.git.1.0e8ef36.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"product": {
"name": "golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"product_id": "golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-github-prometheus-prometheus@3.11.153-1.git.1.7a486a2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"product": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"product_id": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-autoheal@3.11.153-1.git.1.a190220.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"product": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"product_id": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-enterprise-cluster-capacity@3.11.153-1.git.1.5f83714.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"product": {
"name": "openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"product_id": "openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kuryr@3.11.153-1.git.1.073ef06.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"product": {
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"product_id": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible@3.11.153-2.git.0.ee699b5.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "apb-container-scripts-0:1.9.8-1.el7.noarch",
"product": {
"name": "apb-container-scripts-0:1.9.8-1.el7.noarch",
"product_id": "apb-container-scripts-0:1.9.8-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apb-container-scripts@1.9.8-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "apb-devel-0:1.9.8-1.el7.noarch",
"product": {
"name": "apb-devel-0:1.9.8-1.el7.noarch",
"product_id": "apb-devel-0:1.9.8-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/apb-devel@1.9.8-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"product": {
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"product_id": "jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jenkins-2-plugins@3.11.1568994366-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "jenkins-0:2.176.3.1569349414-1.el7.noarch",
"product": {
"name": "jenkins-0:2.176.3.1569349414-1.el7.noarch",
"product_id": "jenkins-0:2.176.3.1569349414-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jenkins@2.176.3.1569349414-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mediawiki-0:1.27.7-1.el7.noarch",
"product": {
"name": "mediawiki-0:1.27.7-1.el7.noarch",
"product_id": "mediawiki-0:1.27.7-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mediawiki@1.27.7-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mediawiki-doc-0:1.27.7-1.el7.noarch",
"product": {
"name": "mediawiki-doc-0:1.27.7-1.el7.noarch",
"product_id": "mediawiki-doc-0:1.27.7-1.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mediawiki-doc@1.27.7-1.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.11.153-1.git.0.aaf3f71.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.11.153-1.git.0.aaf3f71.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product": {
"name": "openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_id": "openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kuryr-cni@3.11.153-1.git.1.073ef06.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product": {
"name": "openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_id": "openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kuryr-common@3.11.153-1.git.1.073ef06.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product": {
"name": "openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_id": "openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-kuryr-controller@3.11.153-1.git.1.073ef06.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product": {
"name": "python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_id": "python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python2-kuryr-kubernetes@3.11.153-1.git.1.073ef06.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product": {
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_id": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible@3.11.153-2.git.0.ee699b5.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product": {
"name": "openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_id": "openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible-docs@3.11.153-2.git.0.ee699b5.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product": {
"name": "openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_id": "openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible-playbooks@3.11.153-2.git.0.ee699b5.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product": {
"name": "openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_id": "openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible-roles@3.11.153-2.git.0.ee699b5.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product": {
"name": "openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_id": "openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-ansible-test@3.11.153-2.git.0.ee699b5.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "apb-0:1.9.8-1.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le"
},
"product_reference": "apb-0:1.9.8-1.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apb-0:1.9.8-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src"
},
"product_reference": "apb-0:1.9.8-1.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apb-0:1.9.8-1.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64"
},
"product_reference": "apb-0:1.9.8-1.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apb-container-scripts-0:1.9.8-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch"
},
"product_reference": "apb-container-scripts-0:1.9.8-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "apb-devel-0:1.9.8-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch"
},
"product_reference": "apb-devel-0:1.9.8-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le"
},
"product_reference": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src"
},
"product_reference": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le"
},
"product_reference": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src"
},
"product_reference": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le"
},
"product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src"
},
"product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64"
},
"product_reference": "atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le"
},
"product_reference": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src"
},
"product_reference": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64"
},
"product_reference": "atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le"
},
"product_reference": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src"
},
"product_reference": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64"
},
"product_reference": "atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le"
},
"product_reference": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src"
},
"product_reference": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64"
},
"product_reference": "atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le"
},
"product_reference": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src"
},
"product_reference": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64"
},
"product_reference": "atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le"
},
"product_reference": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le"
},
"product_reference": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src"
},
"product_reference": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64"
},
"product_reference": "atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le"
},
"product_reference": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src"
},
"product_reference": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64"
},
"product_reference": "cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le"
},
"product_reference": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64"
},
"product_reference": "cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le"
},
"product_reference": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src"
},
"product_reference": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64"
},
"product_reference": "golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src"
},
"product_reference": "golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src"
},
"product_reference": "golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src"
},
"product_reference": "golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jenkins-0:2.176.3.1569349414-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch"
},
"product_reference": "jenkins-0:2.176.3.1569349414-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jenkins-0:2.176.3.1569349414-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src"
},
"product_reference": "jenkins-0:2.176.3.1569349414-1.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch"
},
"product_reference": "jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jenkins-2-plugins-0:3.11.1568994366-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src"
},
"product_reference": "jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mediawiki-0:1.27.7-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch"
},
"product_reference": "mediawiki-0:1.27.7-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mediawiki-0:1.27.7-1.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src"
},
"product_reference": "mediawiki-0:1.27.7-1.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mediawiki-doc-0:1.27.7-1.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch"
},
"product_reference": "mediawiki-doc-0:1.27.7-1.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch"
},
"product_reference": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src"
},
"product_reference": "openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch"
},
"product_reference": "openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch"
},
"product_reference": "openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch"
},
"product_reference": "openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch"
},
"product_reference": "openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le"
},
"product_reference": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src"
},
"product_reference": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64"
},
"product_reference": "openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le"
},
"product_reference": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src"
},
"product_reference": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64"
},
"product_reference": "openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src"
},
"product_reference": "openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch"
},
"product_reference": "openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch"
},
"product_reference": "openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch"
},
"product_reference": "openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le"
},
"product_reference": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src"
},
"product_reference": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64"
},
"product_reference": "openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le"
},
"product_reference": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64"
},
"product_reference": "prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le"
},
"product_reference": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64"
},
"product_reference": "prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le"
},
"product_reference": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64"
},
"product_reference": "prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch as a component of Red Hat OpenShift Container Platform 3.11",
"product_id": "7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
},
"product_reference": "python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.11"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64"
],
"known_not_affected": [
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-10-18T02:02:14+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system is applied.\n\nSee the following documentation, which will be updated shortly for release 3.11.153, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at https://access.redhat.com/articles/11258.",
"product_ids": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2019:3139"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64"
],
"known_not_affected": [
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-10-18T02:02:14+00:00",
"details": "Before applying this update, ensure all previously released errata relevant to your system is applied.\n\nSee the following documentation, which will be updated shortly for release 3.11.153, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/3.11/release_notes/ocp_3_11_release_notes.html\n\nThis update is available via the Red Hat Network. Details on how to use the\nRed Hat Network to apply this update are available at https://access.redhat.com/articles/11258.",
"product_ids": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHBA-2019:3139"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.src",
"7Server-RH7-RHOSE-3.11:apb-0:1.9.8-1.el7.x86_64",
"7Server-RH7-RHOSE-3.11:apb-container-scripts-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:apb-devel-0:1.9.8-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-enterprise-service-catalog-svcat-1:3.11.153-1.git.1.e227636.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-clients-redistributable-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-cluster-autoscaler-0:3.11.153-1.git.1.bde8a94.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-descheduler-0:3.11.153-1.git.1.69ca8e7.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-docker-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-dockerregistry-0:3.11.153-1.git.1.74c6913.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-excluder-0:3.11.153-1.git.0.aaf3f71.el7.noarch",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hyperkube-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-hypershift-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-master-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-metrics-server-0:3.11.153-1.git.1.a8cdc59.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-node-problem-detector-0:3.11.153-1.git.1.7fbf681.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-pod-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-sdn-ovs-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-service-idler-0:3.11.153-1.git.1.208da50.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-template-service-broker-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-tests-0:3.11.153-1.git.0.aaf3f71.el7.x86_64",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.src",
"7Server-RH7-RHOSE-3.11:atomic-openshift-web-console-0:3.11.153-1.git.1.7b8d88b.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.src",
"7Server-RH7-RHOSE-3.11:cri-tools-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:cri-tools-debuginfo-0:1.11.1-2.rhaos3.11.gitedabfb5.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-openshift-oauth-proxy-0:3.11.153-1.git.1.a814e13.el7.x86_64",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-node_exporter-0:3.11.153-1.git.1.0e8ef36.el7.src",
"7Server-RH7-RHOSE-3.11:golang-github-prometheus-prometheus-0:3.11.153-1.git.1.7a486a2.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-0:2.176.3.1569349414-1.el7.src",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:jenkins-2-plugins-0:3.11.1568994366-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:mediawiki-0:1.27.7-1.el7.src",
"7Server-RH7-RHOSE-3.11:mediawiki-doc-0:1.27.7-1.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-0:3.11.153-2.git.0.ee699b5.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-ansible-docs-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-playbooks-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-roles-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-ansible-test-0:3.11.153-2.git.0.ee699b5.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-autoheal-0:3.11.153-1.git.1.a190220.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-enterprise-cluster-capacity-0:3.11.153-1.git.1.5f83714.el7.x86_64",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-0:3.11.153-1.git.1.073ef06.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-cni-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-common-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-kuryr-controller-0:3.11.153-1.git.1.073ef06.el7.noarch",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.src",
"7Server-RH7-RHOSE-3.11:openshift-monitor-project-lifecycle-0:3.11.51-2.git.59.7b59e29.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-0:3.11.153-1.git.1.7a486a2.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-alertmanager-0:3.11.153-1.git.1.2768abd.el7.x86_64",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.ppc64le",
"7Server-RH7-RHOSE-3.11:prometheus-node-exporter-0:3.11.153-1.git.1.0e8ef36.el7.x86_64",
"7Server-RH7-RHOSE-3.11:python2-kuryr-kubernetes-0:3.11.153-1.git.1.073ef06.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
}
]
}
RHSA-2019:2594
Vulnerability from csaf_redhat - Published: 2019-09-10 15:58 - Updated: 2026-04-28 06:26Summary
Red Hat Security Advisory: OpenShift Container Platform 4.1.14 security and bug fix update
Severity
Important
Notes
Topic: An update is now available for Red Hat OpenShift Container Platform 4.1.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat
OpenShift Container Platform 4.1.14. All container images have been rebuilt with updated versions of golang. See the following advisory for the
RPM packages for this release:
https://access.redhat.com/errata/RHBA-2019:2660
Security Fix(es):
* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)
* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
This release also includes the following bugs:
* Previously, users would see an error in the web console when navigating to the ClusterResourceQuota instances from the CRD list. The problem has been fixed, and you can now successfully list ClusterResourceQuota instances from the CRD page. (BZ#1743259)
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-rel
ease-notes.html
You may download the oc tool and use it to inspect release image metadata
as follows:
$ oc adm release info quay.io/openshift-release-dev/ocp-release:4.1.14
The image digest is sha256:fd41c9bda9e0ff306954f1fd7af6428edff8c3989b75f9fe984968db66846231
All OpenShift Container Platform 4.1 users are advised to upgrade to these
updated packages and images.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
94 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
94 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
34 references
Acknowledgments
the Envoy security team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat OpenShift Container Platform 4.1.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat\nOpenShift Container Platform 4.1.14. All container images have been rebuilt with updated versions of golang. See the following advisory for the\nRPM packages for this release:\n\nhttps://access.redhat.com/errata/RHBA-2019:2660\n\nSecurity Fix(es):\n\n* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)\n\n* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nThis release also includes the following bugs: \n\n* Previously, users would see an error in the web console when navigating to the ClusterResourceQuota instances from the CRD list. The problem has been fixed, and you can now successfully list ClusterResourceQuota instances from the CRD page. (BZ#1743259)\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-rel\nease-notes.html\n\nYou may download the oc tool and use it to inspect release image metadata\nas follows:\n\n $ oc adm release info quay.io/openshift-release-dev/ocp-release:4.1.14\n\nThe image digest is sha256:fd41c9bda9e0ff306954f1fd7af6428edff8c3989b75f9fe984968db66846231\n\nAll OpenShift Container Platform 4.1 users are advised to upgrade to these\nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:2594",
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1717794",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1717794"
},
{
"category": "external",
"summary": "1729510",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1729510"
},
{
"category": "external",
"summary": "1735363",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735363"
},
{
"category": "external",
"summary": "1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "1737156",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1737156"
},
{
"category": "external",
"summary": "1737164",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1737164"
},
{
"category": "external",
"summary": "1737386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1737386"
},
{
"category": "external",
"summary": "1740044",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1740044"
},
{
"category": "external",
"summary": "1741067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741067"
},
{
"category": "external",
"summary": "1741499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741499"
},
{
"category": "external",
"summary": "1741694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1741694"
},
{
"category": "external",
"summary": "1743119",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743119"
},
{
"category": "external",
"summary": "1743259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743259"
},
{
"category": "external",
"summary": "1743418",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743418"
},
{
"category": "external",
"summary": "1743587",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743587"
},
{
"category": "external",
"summary": "1743748",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743748"
},
{
"category": "external",
"summary": "1743771",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1743771"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2594.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.1.14 security and bug fix update",
"tracking": {
"current_release_date": "2026-04-28T06:26:25+00:00",
"generator": {
"date": "2026-04-28T06:26:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2019:2594",
"initial_release_date": "2019-09-10T15:58:57+00:00",
"revision_history": [
{
"date": "2019-09-10T15:58:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-09-10T15:58:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-28T06:26:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"product": {
"name": "openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"product_id": "openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-autoscaler\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"product": {
"name": "openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"product_id": "openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-descheduler\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"product": {
"name": "openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"product_id": "openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-baremetal-machine-controllers\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"product": {
"name": "openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"product_id": "openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-logging-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"product": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"product_id": "openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-monitoring-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"product": {
"name": "openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"product_id": "openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-network-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"product": {
"name": "openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"product_id": "openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-node-tuning-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"product": {
"name": "openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"product_id": "openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-version-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"product": {
"name": "openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"product_id": "openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-configmap-reloader\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"product": {
"name": "openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"product_id": "openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-coredns\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"product": {
"name": "openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"product_id": "openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-descheduler-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"product": {
"name": "openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"product_id": "openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-elasticsearch-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"product": {
"name": "openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"product_id": "openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-oauth-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"product": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"product_id": "openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-alertmanager\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"product": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"product_id": "openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-node-exporter\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"product": {
"name": "openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"product_id": "openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"product": {
"name": "openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"product_id": "openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-grafana\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"product": {
"name": "openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"product_id": "openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-jenkins-agent-maven\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"product": {
"name": "openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"product_id": "openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-jenkins-agent-base\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"product": {
"name": "openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"product_id": "openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-kube-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"product": {
"name": "openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"product_id": "openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-kube-rbac-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"product": {
"name": "openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"product_id": "openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-kube-state-metrics\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"product": {
"name": "openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"product_id": "openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-logging-curator5\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"product": {
"name": "openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"product_id": "openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-logging-elasticsearch5\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"product": {
"name": "openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"product_id": "openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-logging-eventrouter\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"product": {
"name": "openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"product_id": "openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-logging-fluentd\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"product": {
"name": "openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"product_id": "openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-operator-marketplace\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"product": {
"name": "openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"product_id": "openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-multus-cni\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"product": {
"name": "openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"product_id": "openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ansible-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"product": {
"name": "openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"product_id": "openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/apb-base\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"product": {
"name": "openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"product_id": "openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-docker-builder\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"product": {
"name": "openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"product_id": "openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cli\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"product": {
"name": "openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"product_id": "openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-capacity\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"product": {
"name": "openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"product_id": "openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-console\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"product": {
"name": "openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"product_id": "openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-console-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"product": {
"name": "openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"product_id": "openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-deployer\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"product": {
"name": "openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"product_id": "openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-dns-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"product": {
"name": "openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"product_id": "openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-router\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"product": {
"name": "openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"product_id": "openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-haproxy-router\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"product": {
"name": "openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"product_id": "openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-hyperkube\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"product": {
"name": "openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"product_id": "openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-hypershift\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"product": {
"name": "openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"product_id": "openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-keepalived-ipfailover\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"product": {
"name": "openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"product_id": "openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/mariadb-apb\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"product": {
"name": "openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"product_id": "openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/mediawiki-apb\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"product": {
"name": "openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"product_id": "openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/mediawiki\u0026tag=v4.1.14-201909040920"
}
}
},
{
"category": "product_version",
"name": "openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"product": {
"name": "openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"product_id": "openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/mysql-apb\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"product": {
"name": "openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"product_id": "openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-pod\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product": {
"name": "openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product_id": "openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product_identification_helper": {
"purl": "pkg:oci/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/postgresql-apb\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product": {
"name": "openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product_id": "openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"product_identification_helper": {
"purl": "pkg:oci/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/postgres-apb\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"product": {
"name": "openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"product_id": "openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-docker-registry\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"product": {
"name": "openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"product_id": "openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-tests\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"product": {
"name": "openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"product_id": "openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-jenkins\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"product": {
"name": "openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"product_id": "openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-operator-lifecycle-manager\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"product": {
"name": "openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"product_id": "openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-operator-registry\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"product": {
"name": "openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"product_id": "openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-aws-machine-controllers\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"product": {
"name": "openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"product_id": "openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-azure-machine-controllers\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"product": {
"name": "openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"product_id": "openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cli-artifacts\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"product": {
"name": "openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"product_id": "openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cloud-credential-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"product": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"product_id": "openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-authentication-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"product": {
"name": "openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"product_id": "openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-autoscaler-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"product": {
"name": "openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"product_id": "openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-bootstrap\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"product": {
"name": "openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"product_id": "openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-config-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"product": {
"name": "openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"product_id": "openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-dns-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"product": {
"name": "openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"product_id": "openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-image-registry-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"product": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"product_id": "openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-ingress-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"product": {
"name": "openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"product_id": "openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-apiserver-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"product": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"product_id": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-controller-manager-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"product": {
"name": "openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"product_id": "openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-kube-scheduler-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"product": {
"name": "openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"product_id": "openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-machine-approver\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"product": {
"name": "openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"product_id": "openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-openshift-apiserver-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"product": {
"name": "openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"product_id": "openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-openshift-controller-manager-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"product": {
"name": "openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"product_id": "openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-samples-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"product": {
"name": "openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"product_id": "openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-storage-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"product": {
"name": "openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"product_id": "openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-cluster-update-keys\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"product": {
"name": "openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"product_id": "openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-egress-http-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"product": {
"name": "openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"product_id": "openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-etcd\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"product": {
"name": "openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"product_id": "openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-installer-artifacts\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"product": {
"name": "openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"product_id": "openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-installer\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"product": {
"name": "openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"product_id": "openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-libvirt-machine-controllers\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"product": {
"name": "openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"product_id": "openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-machine-api-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"product": {
"name": "openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"product_id": "openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-machine-config-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"product": {
"name": "openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"product_id": "openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-multus-admission-controller\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"product": {
"name": "openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"product_id": "openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-must-gather\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"product": {
"name": "openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"product_id": "openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-openstack-machine-controllers\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"product": {
"name": "openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"product_id": "openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-ovn-kubernetes\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"product": {
"name": "openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"product_id": "openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-k8s-prometheus-adapter\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"product": {
"name": "openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"product_id": "openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-service-ca-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"product": {
"name": "openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"product_id": "openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-config-reloader\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"product": {
"name": "openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"product_id": "openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prometheus-operator\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"product": {
"name": "openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"product_id": "openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-prom-label-proxy\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"product": {
"name": "openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"product_id": "openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-cni\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"product": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"product_id": "openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-dp-admission-controller\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"product": {
"name": "openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"product_id": "openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-sriov-network-device-plugin\u0026tag=v4.1.14-201908291507"
}
}
},
{
"category": "product_version",
"name": "openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"product": {
"name": "openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"product_id": "openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef?arch=amd64\u0026repository_url=registry.redhat.io/openshift4/ose-telemeter\u0026tag=v4.1.14-201908291507"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64"
},
"product_reference": "openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64"
},
"product_reference": "openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64"
},
"product_reference": "openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64"
},
"product_reference": "openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64"
},
"product_reference": "openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64"
},
"product_reference": "openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64"
},
"product_reference": "openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64"
},
"product_reference": "openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64"
},
"product_reference": "openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64"
},
"product_reference": "openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64"
},
"product_reference": "openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64"
},
"product_reference": "openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64"
},
"product_reference": "openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64"
},
"product_reference": "openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64"
},
"product_reference": "openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64"
},
"product_reference": "openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64"
},
"product_reference": "openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64"
},
"product_reference": "openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64"
},
"product_reference": "openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64"
},
"product_reference": "openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64"
},
"product_reference": "openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64"
},
"product_reference": "openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64"
},
"product_reference": "openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64"
},
"product_reference": "openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64"
},
"product_reference": "openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64"
},
"product_reference": "openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64"
},
"product_reference": "openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64"
},
"product_reference": "openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64"
},
"product_reference": "openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64"
},
"product_reference": "openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64"
},
"product_reference": "openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64"
},
"product_reference": "openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64"
},
"product_reference": "openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64"
},
"product_reference": "openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64"
},
"product_reference": "openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64"
},
"product_reference": "openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64"
},
"product_reference": "openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64"
},
"product_reference": "openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64"
},
"product_reference": "openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64"
},
"product_reference": "openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64"
},
"product_reference": "openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64"
},
"product_reference": "openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64"
},
"product_reference": "openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64"
},
"product_reference": "openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64"
},
"product_reference": "openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64"
},
"product_reference": "openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64"
},
"product_reference": "openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64"
},
"product_reference": "openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64"
},
"product_reference": "openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64"
},
"product_reference": "openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64"
},
"product_reference": "openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64"
},
"product_reference": "openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64"
},
"product_reference": "openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64"
},
"product_reference": "openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64"
},
"product_reference": "openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64"
},
"product_reference": "openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64"
},
"product_reference": "openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64"
},
"product_reference": "openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64"
},
"product_reference": "openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64"
},
"product_reference": "openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64"
},
"product_reference": "openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64"
},
"product_reference": "openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64"
},
"product_reference": "openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64"
},
"product_reference": "openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64"
},
"product_reference": "openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64"
},
"product_reference": "openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64"
},
"product_reference": "openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64"
},
"product_reference": "openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64"
},
"product_reference": "openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64"
},
"product_reference": "openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64"
},
"product_reference": "openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64"
},
"product_reference": "openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64"
},
"product_reference": "openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64"
},
"product_reference": "openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64"
},
"product_reference": "openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64"
},
"product_reference": "openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64"
},
"product_reference": "openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64"
},
"product_reference": "openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64"
},
"product_reference": "openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64"
},
"product_reference": "openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64"
},
"product_reference": "openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64"
},
"product_reference": "openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64"
},
"product_reference": "openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64"
},
"product_reference": "openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64"
},
"product_reference": "openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64"
},
"product_reference": "openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64"
},
"product_reference": "openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64"
},
"product_reference": "openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64"
},
"product_reference": "openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64"
},
"product_reference": "openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64"
},
"product_reference": "openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64"
},
"product_reference": "openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
},
"product_reference": "openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
},
"product_reference": "openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-10T15:58:57+00:00",
"details": "For OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.14, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-10T15:58:57+00:00",
"details": "For OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.14, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2594"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:openshift4/apb-base@sha256:183441575a8a0ba144fdd346e5ab560a067725a9b66d890493c326e14135512e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mariadb-apb@sha256:a446829513325ac146b2aa1b555347b57a2377712df6cd8a431c1dbec0614331_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki-apb@sha256:0a1ab047c6a93e3531f20673b275854361f36e2ebd4894b5ad1705c3dde42a76_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mediawiki@sha256:8014f0d73799f7f26b56a3d908b55de3103103f57a507d48fe9830c7d605f85d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/mysql-apb@sha256:5772d2a584b96249c535df55b501ffe891162d7651b18244cdc16ab2f0d563dc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ansible-operator@sha256:9469e5ed49937aeb64f0a3dbb5332f087c8498494127a5c507c02c3d4286afb1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-aws-machine-controllers@sha256:e5f585aa452461ee95d55e84d81be54a82a458a54dbcad1f68a8f28edeb7638b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-azure-machine-controllers@sha256:9f3199e5226fdcd5abe34a6f2e3a6ad7e7ad3f59edbff2bfd9b4c84566897eae_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-baremetal-machine-controllers@sha256:d9ca5e81aa2fb401f9c5bfb63e85fc5d93ae1e657ab992e879a2b9d520f3fea3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli-artifacts@sha256:bacaec21f6101ef686bb07b5d6e80b0b3ad06ab9a4d4f6e611ca3103c0030d7e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cli@sha256:bb846647aa233adddf5ed39056fdf98a7d9dc3abef4c985df3de698a44ecc7fd_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cloud-credential-operator@sha256:27c7bac07c2a2a38ddb65a9997b22946fbe37ddd06ecf52eccd0ef9235ae47ba_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-authentication-operator@sha256:67dc9d9d90e5b37c73eda524a13e0bd98834b225adbfccc9d6c09a35a130c8f4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler-operator@sha256:989948cb9998b518f3c325a2af3b24cfb7033ad2ac8be96cb3fafce2b4077435_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-autoscaler@sha256:b995c30d43493a8d393282c760584605951048dbe395eeac6b6b1bec269ff3ad_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-bootstrap@sha256:9a676b7e363f022a511ab07ae81242b5c6d03523db11c37b0bf47e0f0324c9d8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-capacity@sha256:24db95a9d24960c14775136419eed7dfddb7b7d70577fab77a63b64fc66d53a7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-config-operator@sha256:3b210b7313b4853f777d19248ba746b3d29251a3409124f984ae212809930427_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-dns-operator@sha256:5f70ba7ebcee1ecb9f65c8b43280935866607fc3dee6329ed473169f2acebe05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-image-registry-operator@sha256:5c8fa5eb3828277f31ca0d4f7aedfee8e66dc0cfa3542772e6ac13c6b131644d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-ingress-operator@sha256:b33e32eaac7d15947e32cbeb9d45e9ae3e6fbe470611ab78f28cfc99d8759b68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-apiserver-operator@sha256:af88e84a2957ba9eeb1e5e3cdf9cf559ccb0de08d7a16c58a19c8eb805ba5a39_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-controller-manager-operator@sha256:ca1e29c0c4eb029ed4d5544d5fde000000aa007f1d8e0fcf0fc0d317b5e06784_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-kube-scheduler-operator@sha256:6f30eebebe4b774acd19eadeae80c4a7c8ccb503389c354bc76fc0f778cefe2b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-logging-operator@sha256:7926e2be0854ff3edac0ced6950a0be04ad26d46a5da638611457c3fe0f1a19a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-machine-approver@sha256:3535b9ccd701ac3fa6b6a8339f6c10d6e74dd4d8f5f810690fa7e272ee82f837_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-monitoring-operator@sha256:05d69056c09c34d095ccedc757ecf2692690c72d2bee4e6b6afc58b01ec55d9c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-network-operator@sha256:2561079cceff11035c216fea71c0a10622696266aa5a9323ef13806c91537a68_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-node-tuning-operator@sha256:b6fa66947d674eb2fc12b38fb9355c43c57a484d85e56dd013960a760046b793_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-apiserver-operator@sha256:1291555580ce58d7855c7b93ace6826cd2b1a22499fc5df3aad7d36a30b880ee_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-openshift-controller-manager-operator@sha256:3bdcfac3e9dcd30754f1e4158706bbcef77449fc3893521c86fd793cc1f7f32a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-samples-operator@sha256:79ba26ee177bc7cd2ab89ddaa6c66b5dcfc6970dc457cc737d64b18b5d378637_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-storage-operator@sha256:95ad59eb2e2cc58f7ae6b850f648259687f266f05ac91166a39da6bf441e3e86_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-update-keys@sha256:f919d82bd99ecd768271c8ef7ad6bf6d2b5cb902410b93bbafc829c58b59a48f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-cluster-version-operator@sha256:2d99cc15d95e08541d60ebc1966b534fda48d00ee69c7c226996ac407a813d6b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-configmap-reloader@sha256:84bb7a8504eb34ff5e4e9ca92aab960c078ededed07ab0fe79620c0b9f32a51f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console-operator@sha256:665d6d89d83c51de08526c08365317b3dbb9f20e1528ffb35697f6c8bd409ca3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-console@sha256:68c4a7514623c31f7fdf7058a0dcd968dc4e4a63bcf0236ff21333bfb27cc4aa_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-coredns@sha256:9a330c9540816c13ddbbc93e99107f3d2a194c79eae20d81e8b8d252e9282c14_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-deployer@sha256:ab62d8277ea2e69cf6697343c4b6bfef67f04c5f31cdf47fc510cb76969ca2ca_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler-operator@sha256:71ba5a71c71074c282634a6261825c57977abd4999cc03957b8c407808a72902_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-descheduler@sha256:f7527c56780840d4062768e88f098229effd9796639ad67f6cdf841941a7e4a1_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-builder@sha256:25b131fc577def1179ce8a2022211d366fa461b6afef2f566b3f177930a3d0db_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-docker-registry@sha256:f7bd292dde7bd96195b313b4c459980fe8541bd89c442a4065a0114f42f3fe46_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-dns-proxy@sha256:2c00e51829c679d3573f813b0eced5c16382966ecf609915b47a8472872bbb64_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-http-proxy@sha256:77ffd3c6dbb51743a13ce6a9cbd385602c24165848c205aca864b88af5b3c503_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-egress-router@sha256:c46ed6f837821decadaaf07266b9d67f89b98621618bc073abdc38db51bc692a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-elasticsearch-operator@sha256:6b153238aa96aa4128de68a8df8dde185ebb930d2cee6fe1c033ff7b713fb6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-etcd@sha256:3df453713db7ea9a1bd8556a0a986fcd8d8c0a4649c262b9d8652ccfe648bb1e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-grafana@sha256:4304ba0edd79f4b2b7b6f4766dd696e8fb21423ff0dc50a18388e2163d9df3de_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-haproxy-router@sha256:e0c7adba792e43e96c8d6f4e0845e2d001d0f652ece6f567b09ac481b07eafdc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hyperkube@sha256:150fe3e51c75f09bd366d06a96749e17cd01aa845319032c327387950b52a34e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-hypershift@sha256:48392b80092bca63f2969b14412017601ebfda1b54141db53c2bc5b2317c389a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer-artifacts@sha256:7f3e05fa013dead5501513b86c19719973d0f9ee5dbdd4d3f5264fe601dbf809_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-installer@sha256:7f0fb099018d7fba695adfff2c6cec1af789e3c3ccab61bb084a30ae1bdff79f_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-base@sha256:c29122b0ed52c031f5f99ddb3338b6515bc05ac1e90864dda1131dcf9af87924_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins-agent-maven@sha256:ce5dd50d7005ed2d5ef36de673a2cf2cec07ad997ed93956605fe8fc8836d15c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-jenkins@sha256:8da877d1df3fbb0fd4df607718847382d3ab38b862f868077c8938a1a7014f71_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-k8s-prometheus-adapter@sha256:95e7924437a3d110b334b1b03c01e2a65292f092110acde1a59db280ce8c7bda_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-keepalived-ipfailover@sha256:1c0b3bde2963560aa0c50bd8365abd39bc5cfae28409fbdc60abf786546eb2e8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-proxy@sha256:3afce3e28952226f1bb959b2859050e848ed5d4549ac5e2fc267f51b11fc6ec3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-rbac-proxy@sha256:dab4af2713fa59499ee8d2cb169d636ddb425590e6924bc2c03597c0b10bd246_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-kube-state-metrics@sha256:4ff6cd48b319093041c2fa9c32ce16c6ea4dffb1c66ef4923f9cfc108cdfe6cc_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-libvirt-machine-controllers@sha256:2446ea720c26b213b9419bd2ad867c0ca1ec6df6d972cd5ffd6037b8fe0fbc88_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-curator5@sha256:91942a469532fda2a4609f2d7ddf693cca5b2ccd8c770d0e36823f0cc67d884c_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-elasticsearch5@sha256:c4693439c2f0f114238cc4034bfc6cd17f93bb9562ac2c0f9feb30f9c657fcd7_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-eventrouter@sha256:7668a706700163a35def516d1e1be336fef418ea477ef014ba90f5317569384b_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-logging-fluentd@sha256:3ef99bc79d891b111828c6c29faa8f3cd37d8ab8897186eff2bc85824939f632_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-api-operator@sha256:6dfe7c13a6ae6c6e509f0d8cd0cb6e5284f9efd8cc2c949d87a471643e730957_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-machine-config-operator@sha256:ebffd73f3e4ff92792bad0cfa5bba5bec17e2124c7618ae7c4bd49ac777b7deb_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-admission-controller@sha256:101d1c2eeebf1c5e336238056ff9415de50855363eebce3b75cf6ac562adca05_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-multus-cni@sha256:9be2123934d7f80af6439a84b5a9887459c1655549c7790fd080e965e89049b4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-must-gather@sha256:1acef66db6179f4289fc4abbb297df32c01d3b13fd85530ac6a0d925b517c3df_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-oauth-proxy@sha256:383360705efc0605760c3b2b1d0fa288094eb6dad8158c540d950f661b4ba880_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-openstack-machine-controllers@sha256:1779881159f1548a75e4dfd8a285e6ecab2ceede42acd9d07f036ec28bf1e6f9_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-lifecycle-manager@sha256:9254b8d3097a0d067f07bcf735b3530eccc888466f99a6282aebb7bbdd9cbcc8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-marketplace@sha256:3c5b9b86c9a9cd3c11290a44e29f016fe054b7068dd5b8469956909a63813db8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-operator-registry@sha256:5eecc9d91c1ae4f0af586aa7d97fce8a32f23dfcdd64dcc61b9c536fbf4e8663_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-ovn-kubernetes@sha256:d4234553bb7e59323ee19b5d87d189f78fb4cd747551af6a6413b88001e27e13_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-pod@sha256:40b2f3ff0b5ff873669613882579b2a714aed77e1fea4e28a26ebf2726177707_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prom-label-proxy@sha256:c77261cc981cc8a5193ca1199c0a119db5757de135f4f7f5e558744371d2bd8a_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-alertmanager@sha256:ef6c822baa9167856e613e7f1c14a1b44da42a394d91b9e0407d01d769a8fb40_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-config-reloader@sha256:6c0551dd87cc7eacc18ccbac093043b1178225f64843f13435f02ae7c2b4d91e_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-node-exporter@sha256:56c31eb82f202b0ab38bc600ef01ef68302a0a57b7274c9537d3518855e2da1d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus-operator@sha256:a5f9da1798e6b598157343e8751eda45ead551ddfb34ac5e742c6b1d8c8bf0d4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-prometheus@sha256:38e663d919d2c96af52656b42d18556cf457b84ef3160e27496f6db36ffa92a3_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-service-ca-operator@sha256:ba2867ef0021af24b6667d114983400a0f7f5824842f1e11d1cda5aa91286737_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-cni@sha256:7a129a17d719761425ce26a47eaa115789be893f4a1054e37f3c76f891157886_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-dp-admission-controller@sha256:e98327978a09c28baa5f10365d2df1e2c33bb689644d581aa6f7ff095e0c1c5d_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-sriov-network-device-plugin@sha256:4dc4017eee056448d0192834de329c6563c48f625f21ca9db59b22d54db70de8_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-telemeter@sha256:5abb2f8cd1758441ba75e07e0a2f1180dbda0f13e6b51993d7c945b3d91b3bef_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/ose-tests@sha256:28866a167dd7df474b053e92de3ba9bc0d95d918180b1e676637df30c2a27ef4_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgres-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64",
"7Server-RH7-RHOSE-4.1:openshift4/postgresql-apb@sha256:5dcbddc3a6828f444b155cdf8addb71e9c9e370a6cea1c6c5abecbaae6816624_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
}
]
}
RHSA-2019:2661
Vulnerability from csaf_redhat - Published: 2019-09-11 05:53 - Updated: 2026-04-28 06:26Summary
Red Hat Security Advisory: Red Hat OpenShift Container Platform 4.1 openshift RPM security update
Severity
Important
Notes
Topic: An update for the openshift and atomic-enterprise-service-catalog packages is now available for Red Hat OpenShift Container Platform 4.1.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details: Both the openshift and atomic-enterprise-service-catalog packages have been rebuilt with updates versions of golang. The golang packages provide the Go programming language compiler.
Security Fix(es):
* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)
* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
18 references
Acknowledgments
the Envoy security team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the openshift and atomic-enterprise-service-catalog packages is now available for Red Hat OpenShift Container Platform 4.1.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Both the openshift and atomic-enterprise-service-catalog packages have been rebuilt with updates versions of golang. The golang packages provide the Go programming language compiler.\n\nSecurity Fix(es):\n\n* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)\n* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:2661",
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2661.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Container Platform 4.1 openshift RPM security update",
"tracking": {
"current_release_date": "2026-04-28T06:26:28+00:00",
"generator": {
"date": "2026-04-28T06:26:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2019:2661",
"initial_release_date": "2019-09-11T05:53:28+00:00",
"revision_history": [
{
"date": "2019-09-11T05:53:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-09-11T05:53:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-28T06:26:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.1",
"product": {
"name": "Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.1::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.1.14-201908290858.git.1.28cc9ff.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product": {
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product_id": "atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog-svcat@4.1.14-201908290858.git.1.28cc9ff.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product": {
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_id": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.1.14-201908290858.git.0.3bd3467.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_id": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.1.14-201908290858.git.0.3bd3467.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_id": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.1.14-201908290858.git.0.3bd3467.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product": {
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_id": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.1.14-201908290858.git.0.3bd3467.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_id": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.1.14-201908290858.git.0.3bd3467.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_id": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.1.14-201908290858.git.0.3bd3467.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"product": {
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"product_id": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-enterprise-service-catalog@4.1.14-201908290858.git.1.28cc9ff.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"product": {
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"product_id": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.1.14-201908290858.git.0.3bd3467.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"product": {
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"product_id": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.1.14-201908290858.git.0.3bd3467.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src"
},
"product_reference": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64"
},
"product_reference": "atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src"
},
"product_reference": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64"
},
"product_reference": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src"
},
"product_reference": "openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
},
"product_reference": "openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.1",
"product_id": "8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-11T05:53:28+00:00",
"details": "For OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.14, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-11T05:53:28+00:00",
"details": "For OpenShift Container Platform 4.1 see the following documentation, which\nwill be updated shortly for release 4.1.14, for important instructions on\nhow to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.openshift.com/container-platform/4.1/release_notes/ocp-4-1-release-notes.html\n\nDetails on how to access this content are available at\nhttps://docs.openshift.com/container-platform/4.1/updating/updating-cluster-cli.html.",
"product_ids": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2661"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.src",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:atomic-enterprise-service-catalog-svcat-1:4.1.14-201908290858.git.1.28cc9ff.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el7.src",
"7Server-RH7-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"7Server-RH7-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el7.x86_64",
"8Base-RHOSE-4.1:openshift-0:4.1.14-201908290858.git.0.3bd3467.el8.src",
"8Base-RHOSE-4.1:openshift-clients-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-clients-redistributable-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64",
"8Base-RHOSE-4.1:openshift-hyperkube-0:4.1.14-201908290858.git.0.3bd3467.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
}
]
}
RHSA-2019:2682
Vulnerability from csaf_redhat - Published: 2019-09-10 17:47 - Updated: 2026-04-28 06:26Summary
Red Hat Security Advisory: go-toolset-1.11 and go-toolset-1.11-golang security update
Severity
Important
Notes
Topic: An update for go-toolset-1.11 and go-toolset-1.11-golang is now available for Red Hat Developer Tools.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.
Security Fix(es):
* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)
* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
120 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.
7.5 (High)
Affected products
Fixed
120 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Important
References
18 references
Acknowledgments
the Envoy security team
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for go-toolset-1.11 and go-toolset-1.11-golang is now available for Red Hat Developer Tools.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.\n\nSecurity Fix(es):\n\n* HTTP/2: flood using PING frames results in unbounded memory growth (CVE-2019-9512)\n\n* HTTP/2: flood using HEADERS frames results in unbounded memory growth (CVE-2019-9514)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2019:2682",
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2019/rhsa-2019_2682.json"
}
],
"title": "Red Hat Security Advisory: go-toolset-1.11 and go-toolset-1.11-golang security update",
"tracking": {
"current_release_date": "2026-04-28T06:26:31+00:00",
"generator": {
"date": "2026-04-28T06:26:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.7.5"
}
},
"id": "RHSA-2019:2682",
"initial_release_date": "2019-09-10T17:47:41+00:00",
"revision_history": [
{
"date": "2019-09-10T17:47:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2019-09-10T17:47:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-04-28T06:26:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devtools:2019"
}
}
},
{
"category": "product_name",
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devtools:2019"
}
}
},
{
"category": "product_name",
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devtools:2019"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Tools"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-bin@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-misc@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-race@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-src@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"product": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"product_id": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-tests@1.11.13-2.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"product": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"product_id": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11@1.11.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"product": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"product_id": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-build@1.11.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"product": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"product_id": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-runtime@1.11.13-1.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"product": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"product_id": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-scldevel@1.11.13-1.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"product": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"product_id": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang@1.11.13-2.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-0:1.11.13-1.el7.src",
"product": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.src",
"product_id": "go-toolset-1.11-0:1.11.13-1.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11@1.11.13-1.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"product": {
"name": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"product_id": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-docs@1.11.13-2.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"product_id": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang@1.11.13-2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"product_id": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-bin@1.11.13-2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"product_id": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-misc@1.11.13-2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"product_id": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-src@1.11.13-2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"product_id": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-tests@1.11.13-2.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"product_id": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11@1.11.13-1.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"product_id": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-build@1.11.13-1.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"product_id": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-runtime@1.11.13-1.el7?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"product": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"product_id": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-scldevel@1.11.13-1.el7?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"product": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"product_id": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang@1.11.13-2.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"product": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"product_id": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-bin@1.11.13-2.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"product": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"product_id": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-misc@1.11.13-2.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"product": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"product_id": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-src@1.11.13-2.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"product": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"product_id": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-tests@1.11.13-2.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"product": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"product_id": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11@1.11.13-1.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"product": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"product_id": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-build@1.11.13-1.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"product": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"product_id": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-runtime@1.11.13-1.el7?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"product": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"product_id": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-scldevel@1.11.13-1.el7?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"product": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"product_id": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang@1.11.13-2.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"product": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"product_id": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-bin@1.11.13-2.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"product": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"product_id": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-misc@1.11.13-2.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"product": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"product_id": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-src@1.11.13-2.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"product": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"product_id": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-golang-tests@1.11.13-2.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"product": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"product_id": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11@1.11.13-1.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"product": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"product_id": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-build@1.11.13-1.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"product": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"product_id": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-runtime@1.11.13-1.el7?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"product": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"product_id": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.11-scldevel@1.11.13-1.el7?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.src",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch"
},
"product_reference": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-Alt-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.src",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch"
},
"product_reference": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Server-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.src",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch"
},
"product_reference": "go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64"
},
"product_reference": "go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
},
"product_reference": "go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2019.3"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9512",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735645"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using PING frames and queuing of response PING ACK frames, a flood attack could occur resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using PING frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9512"
},
{
"category": "external",
"summary": "RHBZ#1735645",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735645"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9512",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9512"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9512"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-10T17:47:41+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using PING frames results in unbounded memory growth"
},
{
"acknowledgments": [
{
"names": [
"the Envoy security team"
]
}
],
"cve": "CVE-2019-9514",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2019-08-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1735744"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in HTTP/2. Using HEADER frames with invalid HTTP headers and queuing of response RST_STREAM frames, an attacker could cause a flood resulting in unbounded memory growth. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: flood using HEADERS frames results in unbounded memory growth",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The golang package in Red Hat OpenStack Platform 9 Operational Tools will not be updated for this flaw because it is in technical preview and is retiring as of 24.Aug.2019.\nThis issue did not affect the versions of grafana(embeds golang) as shipped with Red Hat Ceph Storage 2 and Red Hat Gluster Storage 3 as they did not include the support for HTTP/2.\nThe following storage product versions are affected because they include the support for HTTP/2 in:\n* golang as shipped with Red Hat Gluster Storage 3, Red Hat Ceph Storage 2 and Red Hat Ceph Storage 3\n* heketi(embeds golang) as shipped with Red Hat Gluster Storage 3\n* grafana(embeds golang and grpc) as shipped with Red Hat Ceph Storage 3\nThis flaw has no available mitigation for packages golang and nodejs. Both packages will be updated once the available fixes are released for Red Hat Enterprise Linux and Red Hat Software Collections.\n\nThe nodejs RPM shipped in OpenShift Container Platform 3.9 and 3.10 is not affected by this flaw as it does not contain the vulnerable code.\n\nAll OpenShift Container Platform RPMs and container images that are built with Go and support HTTP/2 are vulnerable to this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-9514"
},
{
"category": "external",
"summary": "RHBZ#1735744",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1735744"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-9514",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9514"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-9514"
},
{
"category": "external",
"summary": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md",
"url": "https://github.com/Netflix/security-bulletins/blob/master/advisories/third-party/2019-002.md"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg",
"url": "https://groups.google.com/forum/#!topic/golang-announce/65QixT3tcmg"
},
{
"category": "external",
"summary": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA",
"url": "https://groups.google.com/forum/#!topic/kubernetes-security-announce/wlHLHit1BqA"
},
{
"category": "external",
"summary": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/",
"url": "https://nodejs.org/en/blog/vulnerability/aug-2019-security-releases/"
},
{
"category": "external",
"summary": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html",
"url": "https://www.mail-archive.com/grpc-io@googlegroups.com/msg06408.html"
}
],
"release_date": "2019-08-13T17:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2019-09-10T17:47:41+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2019:2682"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-Alt-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Server-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-build-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.src",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-bin-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-docs-0:1.11.13-2.el7.noarch",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-misc-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-race-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-src-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-golang-tests-0:1.11.13-2.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-runtime-0:1.11.13-1.el7.x86_64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.aarch64",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.ppc64le",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.s390x",
"7Workstation-DevTools-2019.3:go-toolset-1.11-scldevel-0:1.11.13-1.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: flood using HEADERS frames results in unbounded memory growth"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…