Vulnerability-Lookup

CVE-2022-23772 (GCVE-0-2022-23772)

Vulnerability from cvelistv5 – Published: 2022-02-11 00:11 – Updated: 2024-08-03 03:51

Summary

Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.

Severity

No CVSS data available.

CWE

Assigner

mitre

References

6 references

URL	Tags
https://lists.debian.org/debian-lts-announce/2022…	mailing-listx_refsource_MLIST
https://lists.debian.org/debian-lts-announce/2022…	mailing-listx_refsource_MLIST
https://www.oracle.com/security-alerts/cpujul2022.html	x_refsource_MISC
https://groups.google.com/g/golang-announce/c/SUs…	x_refsource_MISC
https://security.netapp.com/advisory/ntap-2022022…	x_refsource_CONFIRM
https://security.gentoo.org/glsa/202208-02	vendor-advisoryx_refsource_GENTOO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T03:51:46.050Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2985-1] golang-1.7 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00017.html"
          },
          {
            "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2986-1] golang-1.8 security update",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00018.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://security.netapp.com/advisory/ntap-20220225-0006/"
          },
          {
            "name": "GLSA-202208-02",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "https://security.gentoo.org/glsa/202208-02"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-08-04T15:08:10.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2985-1] golang-1.7 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00017.html"
        },
        {
          "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2986-1] golang-1.8 security update",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00018.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://security.netapp.com/advisory/ntap-20220225-0006/"
        },
        {
          "name": "GLSA-202208-02",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "https://security.gentoo.org/glsa/202208-02"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2022-23772",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2985-1] golang-1.7 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00017.html"
            },
            {
              "name": "[debian-lts-announce] 20220428 [SECURITY] [DLA 2986-1] golang-1.8 security update",
              "refsource": "MLIST",
              "url": "https://lists.debian.org/debian-lts-announce/2022/04/msg00018.html"
            },
            {
              "name": "https://www.oracle.com/security-alerts/cpujul2022.html",
              "refsource": "MISC",
              "url": "https://www.oracle.com/security-alerts/cpujul2022.html"
            },
            {
              "name": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
              "refsource": "MISC",
              "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
            },
            {
              "name": "https://security.netapp.com/advisory/ntap-20220225-0006/",
              "refsource": "CONFIRM",
              "url": "https://security.netapp.com/advisory/ntap-20220225-0006/"
            },
            {
              "name": "GLSA-202208-02",
              "refsource": "GENTOO",
              "url": "https://security.gentoo.org/glsa/202208-02"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2022-23772",
    "datePublished": "2022-02-11T00:11:15.000Z",
    "dateReserved": "2022-01-20T00:00:00.000Z",
    "dateUpdated": "2024-08-03T03:51:46.050Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2022-23772",
      "date": "2026-05-30",
      "epss": "0.00038",
      "percentile": "0.11594"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-23772\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2022-02-11T01:15:07.657\",\"lastModified\":\"2024-11-21T06:49:15.127\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.\"},{\"lang\":\"es\",\"value\":\"Rat.SetString en el archivo math/big en Go versiones anteriores a 1.16.14 y versiones 1.17.x anteriores a 1.17.7, presenta un desbordamiento que puede conllevar a un Consumo de Memoria no Controlado\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-190\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.16.14\",\"matchCriteriaId\":\"3AC42B47-ED6E-4F64-BAFA-770B8834BB25\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.17.0\",\"versionEndExcluding\":\"1.17.7\",\"matchCriteriaId\":\"39A5AFCD-0F53-440D-B617-BB1C92B67028\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:beegfs_csi_driver:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B60CE797-9177-4705-B02D-83F5A48C5F6F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:cloud_insights_telegraf_agent:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DAE7369-EEC5-405E-9D13-858335FDA647\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:kubernetes_monitoring_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F8E1764-2021-41E7-9CBE-6864313A74E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8ADFF451-740F-4DBA-BD23-3881945D3E40\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/04/msg00017.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/04/msg00018.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202208-02\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220225-0006/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/04/msg00017.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/04/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202208-02\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20220225-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
  }
}

RHSA-2023:1529

Vulnerability from csaf_redhat - Published: 2023-03-30 00:42 - Updated: 2026-05-30 14:27

Summary

Red Hat Security Advisory: Service Telemetry Framework 1.5 security update

Severity

Moderate

Notes

Topic: An update is now available for Service Telemetry Framework 1.5. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Service Telemetry Framework (STF) provides automated collection of measurements and data from remote clients, such as Red Hat OpenStack Platform or third-party nodes. STF then transmits the information to a centralized, receiving Red Hat OpenShift Container Platform (OCP) deployment for storage, retrieval, and monitoring. Security Fix(es): * golang: crypto/elliptic: IsOnCurve returns true for invalid field elements (CVE-2022-23806) * golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772) * golang: cmd/go: misinterpretation of branch names can lead to incorrect access control (CVE-2022-23773) * golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675) * golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327) * golang: syscall: faccessat checks wrong group (CVE-2022-29526) * golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631) * golang: io/fs: stack exhaustion in Glob (CVE-2022-30630) * golang: net/http: improper sanitization of Transfer-Encoding header (CVE-2022-1705) * golang: path/filepath: stack exhaustion in Glob (CVE-2022-30632) * golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664) * golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715) * golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717) * golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629) * golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service (CVE-2022-32189) For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

CVE-2022-1705

A flaw was found in golang. The HTTP/1 client accepted invalid Transfer-Encoding headers indicating "chunked" encoding. This issue could allow request smuggling, but only if combined with an intermediate server that also improperly accepts the header as invalid.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-444 - Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-23772

A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-23773

A flaw was found in the go package of the cmd library in golang. The go command could be tricked into accepting a branch, which resembles a version tag. This issue could allow a remote unauthenticated attacker to bypass security restrictions and introduce invalid or incorrect tags, reducing the integrity of the environment.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE-266 - Incorrect Privilege Assignment

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-23806

A flaw was found in the elliptic package of the crypto library in golang when the IsOnCurve function could return true for invalid field elements. This flaw allows an attacker to take advantage of this undefined behavior, affecting the availability and integrity of the resource.

7.1 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H

CWE-252 - Unchecked Return Value

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-24675

A buffer overflow flaw was found in Golang's library encoding/pem. This flaw allows an attacker to use a large PEM input (more than 5 MB), causing a stack overflow in Decode, which leads to a loss of availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-27664

A flaw was found in the golang package. In net/http in Go, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if a fatal error preempts the shutdown.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-28327

An integer overflow flaw was found in Golang's crypto/elliptic library. This flaw allows an attacker to use a crafted scaler input longer than 32 bytes, causing P256().ScalarMult or P256().ScalarBaseMult to panic, leading to a loss of availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-29526

A flaw was found in the syscall.Faccessat function when calling a process by checking the group. This flaw allows an attacker to check the process group permissions rather than a member of the file's group, affecting system availability.

6.2 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-358 - Improperly Implemented Security Check for Standard

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-30629

A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption.

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

CWE-331 - Insufficient Entropy

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Low

CVE-2022-30630

A flaw was found in the golang standard library, io/fs. Calling Glob on a path that contains a large number of path separators can cause a panic issue due to stack exhaustion. This could allow an attacker to impact availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1325 - Improperly Controlled Sequential Memory Allocation

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-30631

A flaw was found in golang. Calling the Reader, Read method on an archive that contains a large number of concatenated 0-length compressed files can cause a panic issue due to stack exhaustion.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1325 - Improperly Controlled Sequential Memory Allocation

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-30632

A flaw was found in golang. Calling Glob on a path that contains a large number of path separators can cause a panic issue due to stack exhaustion. This can cause an attacker to impact availability.

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-1325 - Improperly Controlled Sequential Memory Allocation

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-32189

An uncontrolled resource consumption flaw was found in Golang math/big. A too-short encoded message can cause a panic in Float.GobDecode and Rat.GobDecode in math/big in Go, potentially allowing an attacker to create a denial of service, impacting availability.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE-400 - Uncontrolled Resource Consumption

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix Workaround

Known not affected 6 products

Product	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64	—	Workaround
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64	—	Workaround
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64	—	Workaround
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64	—	Workaround
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64	—	Workaround
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64	—	Workaround

Threats

Impact Low

CVE-2022-41715

A flaw was found in the golang package, where programs that compile regular expressions from untrusted sources are vulnerable to memory exhaustion or a denial of service. The parsed regexp representation is linear in the input size. Still, in some cases, the constant factor can be as high as 40,000, making a relatively small regexp consume larger amounts of memory. After the fix, each regexp being parsed is limited to a 256 MB memory footprint. Regular expressions whose representation would use more space than that are rejected. Routine use of regular expressions is unaffected.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

CVE-2022-41717

A flaw was found in the net/http library of the golang package. This flaw allows an attacker to cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate approximately 64 MiB per open connection.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 1 product

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64		—	Vendor Fix fix

Known not affected 6 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64		—
Unresolved product id: 8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64		—

Threats

Impact Moderate

References

100 references

URL	Category
https://access.redhat.com/errata/RHSA-2023:1529	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053429	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053541	external
https://bugzilla.redhat.com/show_bug.cgi?id=2077688	external
https://bugzilla.redhat.com/show_bug.cgi?id=2077689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2084085	external
https://bugzilla.redhat.com/show_bug.cgi?id=2092544	external
https://bugzilla.redhat.com/show_bug.cgi?id=2092793	external
https://bugzilla.redhat.com/show_bug.cgi?id=2107342	external
https://bugzilla.redhat.com/show_bug.cgi?id=2107371	external
https://bugzilla.redhat.com/show_bug.cgi?id=2107374	external
https://bugzilla.redhat.com/show_bug.cgi?id=2107386	external
https://bugzilla.redhat.com/show_bug.cgi?id=2113814	external
https://bugzilla.redhat.com/show_bug.cgi?id=2124669	external
https://bugzilla.redhat.com/show_bug.cgi?id=2132872	external
https://bugzilla.redhat.com/show_bug.cgi?id=2161274	external
https://bugzilla.redhat.com/show_bug.cgi?id=2176537	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-1705	self
https://bugzilla.redhat.com/show_bug.cgi?id=2107374	external
https://www.cve.org/CVERecord?id=CVE-2022-1705	external
https://nvd.nist.gov/vuln/detail/CVE-2022-1705	external
https://go.dev/issue/53188	external
https://groups.google.com/g/golang-announce/c/nqr…	external
https://access.redhat.com/security/cve/CVE-2022-23772	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://www.cve.org/CVERecord?id=CVE-2022-23772	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23772	external
https://groups.google.com/g/golang-announce/c/SUs…	external
https://access.redhat.com/security/cve/CVE-2022-23773	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053541	external
https://www.cve.org/CVERecord?id=CVE-2022-23773	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23773	external
https://access.redhat.com/security/cve/CVE-2022-23806	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053429	external
https://www.cve.org/CVERecord?id=CVE-2022-23806	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23806	external
https://access.redhat.com/security/cve/CVE-2022-24675	self
https://bugzilla.redhat.com/show_bug.cgi?id=2077688	external
https://www.cve.org/CVERecord?id=CVE-2022-24675	external
https://nvd.nist.gov/vuln/detail/CVE-2022-24675	external
https://groups.google.com/g/golang-announce/c/oec…	external
https://access.redhat.com/security/cve/CVE-2022-27664	self
https://bugzilla.redhat.com/show_bug.cgi?id=2124669	external
https://www.cve.org/CVERecord?id=CVE-2022-27664	external
https://nvd.nist.gov/vuln/detail/CVE-2022-27664	external
https://go.dev/issue/54658	external
https://groups.google.com/g/golang-announce/c/x49…	external
https://access.redhat.com/security/cve/CVE-2022-28327	self
https://bugzilla.redhat.com/show_bug.cgi?id=2077689	external
https://www.cve.org/CVERecord?id=CVE-2022-28327	external
https://nvd.nist.gov/vuln/detail/CVE-2022-28327	external
https://access.redhat.com/security/cve/CVE-2022-29526	self
https://bugzilla.redhat.com/show_bug.cgi?id=2084085	external
https://www.cve.org/CVERecord?id=CVE-2022-29526	external
https://nvd.nist.gov/vuln/detail/CVE-2022-29526	external
https://groups.google.com/g/golang-announce/c/Y5q…	external
https://access.redhat.com/security/cve/CVE-2022-30629	self
https://bugzilla.redhat.com/show_bug.cgi?id=2092793	external
https://www.cve.org/CVERecord?id=CVE-2022-30629	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30629	external
https://groups.google.com/g/golang-announce/c/TzI…	external
https://access.redhat.com/security/cve/CVE-2022-30630	self
https://bugzilla.redhat.com/show_bug.cgi?id=2107371	external
https://www.cve.org/CVERecord?id=CVE-2022-30630	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30630	external
https://go.dev/issue/53415	external
https://access.redhat.com/security/cve/CVE-2022-30631	self
https://bugzilla.redhat.com/show_bug.cgi?id=2107342	external
https://www.cve.org/CVERecord?id=CVE-2022-30631	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30631	external
https://go.dev/issue/53168	external
https://access.redhat.com/security/cve/CVE-2022-30632	self
https://bugzilla.redhat.com/show_bug.cgi?id=2107386	external
https://www.cve.org/CVERecord?id=CVE-2022-30632	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30632	external
https://go.dev/issue/53416	external
https://access.redhat.com/security/cve/CVE-2022-32189	self
https://bugzilla.redhat.com/show_bug.cgi?id=2113814	external
https://www.cve.org/CVERecord?id=CVE-2022-32189	external
https://nvd.nist.gov/vuln/detail/CVE-2022-32189	external
https://go.dev/issue/53871	external
https://groups.google.com/g/golang-nuts/c/DCFSyTGM0wU	external
https://access.redhat.com/security/cve/CVE-2022-41715	self
https://bugzilla.redhat.com/show_bug.cgi?id=2132872	external
https://www.cve.org/CVERecord?id=CVE-2022-41715	external
https://nvd.nist.gov/vuln/detail/CVE-2022-41715	external
https://github.com/golang/go/issues/55949	external
https://groups.google.com/g/golang-announce/c/xtu…	external
https://access.redhat.com/security/cve/CVE-2022-41717	self
https://bugzilla.redhat.com/show_bug.cgi?id=2161274	external
https://www.cve.org/CVERecord?id=CVE-2022-41717	external
https://nvd.nist.gov/vuln/detail/CVE-2022-41717	external
https://go.dev/cl/455635	external
https://go.dev/cl/455717	external
https://go.dev/issue/56350	external
https://groups.google.com/g/golang-announce/c/L_3…	external
https://pkg.go.dev/vuln/GO-2022-1144	external

Acknowledgments

Joël Gähwiler

ADA Logics Adam Korczynski

OSS-Fuzz

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An update is now available for Service Telemetry Framework 1.5.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Service Telemetry Framework (STF) provides automated collection of measurements and data from remote clients, such as Red Hat OpenStack Platform or third-party nodes. STF then transmits the information to a centralized, receiving Red Hat OpenShift Container Platform (OCP) deployment for storage, retrieval, and monitoring.\n\nSecurity Fix(es):\n\n* golang: crypto/elliptic: IsOnCurve returns true for invalid field elements (CVE-2022-23806)\n\n* golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772)\n\n* golang: cmd/go: misinterpretation of branch names can lead to incorrect access control (CVE-2022-23773)\n\n* golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675)\n\n* golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327)\n\n* golang: syscall: faccessat checks wrong group (CVE-2022-29526)\n\n* golang: compress/gzip: stack exhaustion in Reader.Read (CVE-2022-30631)\n\n* golang: io/fs: stack exhaustion in Glob (CVE-2022-30630)\n\n* golang: net/http: improper sanitization of Transfer-Encoding header (CVE-2022-1705)\n\n* golang: path/filepath: stack exhaustion in Glob (CVE-2022-30632)\n\n* golang: net/http: handle server errors after sending GOAWAY (CVE-2022-27664)\n\n* golang: regexp/syntax: limit memory used by parsing regexps (CVE-2022-41715)\n\n* golang: net/http: An attacker can cause excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717)\n\n* golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629)\n\n* golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service (CVE-2022-32189)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:1529",
        "url": "https://access.redhat.com/errata/RHSA-2023:1529"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2053429",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053429"
      },
      {
        "category": "external",
        "summary": "2053532",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
      },
      {
        "category": "external",
        "summary": "2053541",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053541"
      },
      {
        "category": "external",
        "summary": "2077688",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688"
      },
      {
        "category": "external",
        "summary": "2077689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689"
      },
      {
        "category": "external",
        "summary": "2084085",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084085"
      },
      {
        "category": "external",
        "summary": "2092544",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092544"
      },
      {
        "category": "external",
        "summary": "2092793",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793"
      },
      {
        "category": "external",
        "summary": "2107342",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342"
      },
      {
        "category": "external",
        "summary": "2107371",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107371"
      },
      {
        "category": "external",
        "summary": "2107374",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107374"
      },
      {
        "category": "external",
        "summary": "2107386",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107386"
      },
      {
        "category": "external",
        "summary": "2113814",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2113814"
      },
      {
        "category": "external",
        "summary": "2124669",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2124669"
      },
      {
        "category": "external",
        "summary": "2132872",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2132872"
      },
      {
        "category": "external",
        "summary": "2161274",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2161274"
      },
      {
        "category": "external",
        "summary": "2176537",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2176537"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_1529.json"
      }
    ],
    "title": "Red Hat Security Advisory: Service Telemetry Framework 1.5 security update",
    "tracking": {
      "current_release_date": "2026-05-30T14:27:48+00:00",
      "generator": {
        "date": "2026-05-30T14:27:48+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.1"
        }
      },
      "id": "RHSA-2023:1529",
      "initial_release_date": "2023-03-30T00:42:39+00:00",
      "revision_history": [
        {
          "date": "2023-03-30T00:42:39+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-03-30T00:42:39+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-30T14:27:48+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Service Telemetry Framework 1.5 for RHEL 8",
                "product": {
                  "name": "Service Telemetry Framework 1.5 for RHEL 8",
                  "product_id": "8Base-STF-1.5",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:stf:1.5::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenStack Platform"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
                "product": {
                  "name": "stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
                  "product_id": "stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f?arch=amd64\u0026repository_url=registry.redhat.io/stf/prometheus-webhook-snmp-rhel8\u0026tag=1.5.2-2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
                "product": {
                  "name": "stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
                  "product_id": "stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717?arch=amd64\u0026repository_url=registry.redhat.io/stf/service-telemetry-operator-bundle\u0026tag=1.5.1678301890-1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
                "product": {
                  "name": "stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
                  "product_id": "stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0?arch=amd64\u0026repository_url=registry.redhat.io/stf/service-telemetry-rhel8-operator\u0026tag=1.5.1-2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
                "product": {
                  "name": "stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
                  "product_id": "stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28?arch=amd64\u0026repository_url=registry.redhat.io/stf/sg-bridge-rhel8\u0026tag=1.5.0-12"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
                "product": {
                  "name": "stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
                  "product_id": "stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37?arch=amd64\u0026repository_url=registry.redhat.io/stf/sg-core-rhel8\u0026tag=5.1.1-2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
                "product": {
                  "name": "stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
                  "product_id": "stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546?arch=amd64\u0026repository_url=registry.redhat.io/stf/smart-gateway-operator-bundle\u0026tag=5.0.1678301890-1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64",
                "product": {
                  "name": "stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64",
                  "product_id": "stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64",
                  "product_identification_helper": {
                    "purl": "pkg:oci/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471?arch=amd64\u0026repository_url=registry.redhat.io/stf/smart-gateway-rhel8-operator\u0026tag=5.0.1-3"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "amd64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64"
        },
        "product_reference": "stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64"
        },
        "product_reference": "stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64"
        },
        "product_reference": "stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64"
        },
        "product_reference": "stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        },
        "product_reference": "stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64"
        },
        "product_reference": "stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64 as a component of Service Telemetry Framework 1.5 for RHEL 8",
          "product_id": "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        },
        "product_reference": "stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64",
        "relates_to_product_reference": "8Base-STF-1.5"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-1705",
      "cwe": {
        "id": "CWE-444",
        "name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
      },
      "discovery_date": "2022-07-14T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2107374"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang. The HTTP/1 client accepted invalid Transfer-Encoding headers indicating \"chunked\" encoding. This issue could allow request smuggling, but only if combined with an intermediate server that also improperly accepts the header as invalid.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http: improper sanitization of Transfer-Encoding header",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-1705"
        },
        {
          "category": "external",
          "summary": "RHBZ#2107374",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107374"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-1705",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-1705"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1705",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1705"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/53188",
          "url": "https://go.dev/issue/53188"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE",
          "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"
        }
      ],
      "release_date": "2022-07-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http: improper sanitization of Transfer-Encoding header"
    },
    {
      "cve": "CVE-2022-23772",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053532"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053532",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23772",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString"
    },
    {
      "cve": "CVE-2022-23773",
      "cwe": {
        "id": "CWE-266",
        "name": "Incorrect Privilege Assignment"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053541"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the go package of the cmd library in golang. The go command could be tricked into accepting a branch, which resembles a version tag. This issue could allow a remote unauthenticated attacker to bypass security restrictions and introduce invalid or incorrect tags, reducing the integrity of the environment.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: cmd/go: misinterpretation of branch names can lead to incorrect access control",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23773"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053541",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053541"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23773",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23773"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23773",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23773"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-02-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: cmd/go: misinterpretation of branch names can lead to incorrect access control"
    },
    {
      "cve": "CVE-2022-23806",
      "cwe": {
        "id": "CWE-252",
        "name": "Unchecked Return Value"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053429"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the elliptic package of the crypto library in golang when the IsOnCurve function could return true for invalid field elements. This flaw allows an attacker to take advantage of this undefined behavior, affecting the availability and integrity of the resource.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: crypto/elliptic: IsOnCurve returns true for invalid field elements",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 8 and 9 are affected because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having a Moderate security impact. The issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7; hence, marked as Out-of-Support-Scope. \n\nRed Hat Developer Tools - Compilers (go-toolset-1.16 \u0026 1.17), will not be addressed in future updates as shipped only in RHEL-7, hence, marked as Out-of-Support-Scope.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.\n\nThe vulnerability lies in the crypto/elliptic: IsOnCurve taking in negative and invalid forms of data input and resulting in a panic, the resulting invalid data input is also resulting in data sinks in other functions such as marshall that handle elliptic curve cryptography by converting points on an elliptic curve into a binary format for storage or transmission and scalarmult which provides scalar multiplication, all three function takes in invalid forms of data and results in a crash, although the main culprit being isoncurve function, considering the attack complexity being high as the data that reaches the vulnerable function could already be stripped of negative sign and the resultant successful exploitation only leading to a panic/crash the vulnerability has been rated as Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23806"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053429",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053429"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23806",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23806"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23806",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23806"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-02-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: crypto/elliptic: IsOnCurve returns true for invalid field elements"
    },
    {
      "cve": "CVE-2022-24675",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2022-04-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2077688"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A buffer overflow flaw was found in Golang\u0027s library encoding/pem. This flaw allows an attacker to use a large PEM input (more than 5 MB), causing a stack overflow in Decode, which leads to a loss of availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: encoding/pem: fix stack overflow in Decode",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope.\n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "RHBZ#2077688",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24675",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8",
          "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8"
        }
      ],
      "release_date": "2022-04-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: encoding/pem: fix stack overflow in Decode"
    },
    {
      "cve": "CVE-2022-27664",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2022-09-06T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2124669"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the golang package. In net/http in Go, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if a fatal error preempts the shutdown.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http: handle server errors after sending GOAWAY",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-27664"
        },
        {
          "category": "external",
          "summary": "RHBZ#2124669",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2124669"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-27664",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-27664"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-27664",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-27664"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/54658",
          "url": "https://go.dev/issue/54658"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/x49AQzIVX-s/m/0tgO0pjiBQAJ",
          "url": "https://groups.google.com/g/golang-announce/c/x49AQzIVX-s/m/0tgO0pjiBQAJ"
        }
      ],
      "release_date": "2022-09-06T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http: handle server errors after sending GOAWAY"
    },
    {
      "cve": "CVE-2022-28327",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-04-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2077689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An integer overflow flaw was found in Golang\u0027s crypto/elliptic library. This flaw allows an attacker to use a crafted scaler input longer than 32 bytes, causing P256().ScalarMult or P256().ScalarBaseMult to panic, leading to a loss of availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: crypto/elliptic: panic caused by oversized scalar",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "A moderate severity flaw was found in Go\u2019s crypto/elliptic package in the generic P-256 implementation. If a scalar input longer than 32 bytes is supplied, P256().ScalarMult or P256().ScalarBaseMult can panic, causing the application to crash. Indirect uses via crypto/ecdsa and crypto/tls are not affected. This issue impacts availability but does not affect confidentiality or integrity. Only certain platforms (non-amd64, non-arm64, non-ppc64le, non-s390x) may be affected.\n\nRed Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "RHBZ#2077689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-28327",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8",
          "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8"
        }
      ],
      "release_date": "2022-04-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: crypto/elliptic: panic caused by oversized scalar"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Jo\u00ebl G\u00e4hwiler"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-29526",
      "cwe": {
        "id": "CWE-358",
        "name": "Improperly Implemented Security Check for Standard"
      },
      "discovery_date": "2022-05-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2084085"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the syscall.Faccessat function when calling a process by checking the group. This flaw allows an attacker to check the process group permissions rather than a member of the file\u0027s group, affecting system availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: syscall: faccessat checks wrong group",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-29526"
        },
        {
          "category": "external",
          "summary": "RHBZ#2084085",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2084085"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-29526",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-29526"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-29526",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-29526"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/Y5qrqw_lWdU",
          "url": "https://groups.google.com/g/golang-announce/c/Y5qrqw_lWdU"
        }
      ],
      "release_date": "2022-05-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.2,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: syscall: faccessat checks wrong group"
    },
    {
      "cve": "CVE-2022-30629",
      "cwe": {
        "id": "CWE-331",
        "name": "Insufficient Entropy"
      },
      "discovery_date": "2022-06-02T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2092793"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: crypto/tls: session tickets lack random ticket_age_add",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "RHBZ#2092793",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30629",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg",
          "url": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg"
        }
      ],
      "release_date": "2022-06-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "golang: crypto/tls: session tickets lack random ticket_age_add"
    },
    {
      "cve": "CVE-2022-30630",
      "cwe": {
        "id": "CWE-1325",
        "name": "Improperly Controlled Sequential Memory Allocation"
      },
      "discovery_date": "2022-07-14T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2107371"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the golang standard library, io/fs. Calling Glob on a path that contains a large number of path separators can cause a panic issue due to stack exhaustion. This could allow an attacker to impact availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: io/fs: stack exhaustion in Glob",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "RH ProdSec has set the Impact of this vulnerability to Moderate as there is no known method to execute arbitary code. Successful exploitation of this bug can cause the application under attack to panic, merely causing a Denial of Service at the application level. As the kernel is unaffected by this bug, the user can merely relaunch the application to fix the problem. Also, if somehow the application keeps relaunching, the timer watchdogs in the default RHEL kernel will stop the attack in its tracks.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30630"
        },
        {
          "category": "external",
          "summary": "RHBZ#2107371",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107371"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30630",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30630"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30630",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30630"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/53415",
          "url": "https://go.dev/issue/53415"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE",
          "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"
        }
      ],
      "release_date": "2022-07-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: io/fs: stack exhaustion in Glob"
    },
    {
      "cve": "CVE-2022-30631",
      "cwe": {
        "id": "CWE-1325",
        "name": "Improperly Controlled Sequential Memory Allocation"
      },
      "discovery_date": "2022-07-14T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2107342"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang. Calling the Reader, Read method on an archive that contains a large number of concatenated 0-length compressed files can cause a panic issue due to stack exhaustion.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: compress/gzip: stack exhaustion in Reader.Read",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "To exploit CVE-2022-30631, an attacker supplies a specially crafted gzip archive to a Go application that uses a vulnerable version of the compress/gzip package without adequate input validation. This can lead to uncontrolled recursion, resulting in stack exhaustion and causing the application to panic, thereby affecting its availability.\n\nAs this is merely a DoS and there is no known way to control the instruction pointer, RH ProdSec has set the impact of this vulnerabilty to \"Moderate\".",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30631"
        },
        {
          "category": "external",
          "summary": "RHBZ#2107342",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107342"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30631",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30631"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30631"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/53168",
          "url": "https://go.dev/issue/53168"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE",
          "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"
        }
      ],
      "release_date": "2022-07-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: compress/gzip: stack exhaustion in Reader.Read"
    },
    {
      "cve": "CVE-2022-30632",
      "cwe": {
        "id": "CWE-1325",
        "name": "Improperly Controlled Sequential Memory Allocation"
      },
      "discovery_date": "2022-07-14T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2107386"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang. Calling Glob on a path that contains a large number of path separators can cause a panic issue due to stack exhaustion. This can cause an attacker to impact availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: path/filepath: stack exhaustion in Glob",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The exploitation of this flaw will only result in a denial of service of the application via the application crashing which is why this has been rated as moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30632"
        },
        {
          "category": "external",
          "summary": "RHBZ#2107386",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2107386"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30632",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30632"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30632",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30632"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/53416",
          "url": "https://go.dev/issue/53416"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE",
          "url": "https://groups.google.com/g/golang-announce/c/nqrv9fbR0zE"
        }
      ],
      "release_date": "2022-07-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: path/filepath: stack exhaustion in Glob"
    },
    {
      "cve": "CVE-2022-32189",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2022-08-02T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2113814"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An uncontrolled resource consumption flaw was found in Golang math/big. A too-short encoded message can cause a panic in Float.GobDecode and Rat.GobDecode in math/big in Go, potentially allowing an attacker to create a denial of service, impacting availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This flaw stems from a particular and specific method (GoBDecode) which isn\u0027t commonly used. There are few components within Red Hat offerings which call this function. In rare cases where this method is called, the component limits possible damage or it is not possible to be triggered by an attacker. For these combined reasons the impact has been downgraded to Low.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-32189"
        },
        {
          "category": "external",
          "summary": "RHBZ#2113814",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2113814"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-32189",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-32189"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-32189",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-32189"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/53871",
          "url": "https://go.dev/issue/53871"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-nuts/c/DCFSyTGM0wU",
          "url": "https://groups.google.com/g/golang-nuts/c/DCFSyTGM0wU"
        }
      ],
      "release_date": "2022-08-01T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "golang: math/big: decoding big.Float and big.Rat types can panic if the encoded message is too short, potentially allowing a denial of service"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Adam Korczynski"
          ],
          "organization": "ADA Logics"
        },
        {
          "names": [
            "OSS-Fuzz"
          ]
        }
      ],
      "cve": "CVE-2022-41715",
      "discovery_date": "2022-10-07T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2132872"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the golang package, where programs that compile regular expressions from untrusted sources are vulnerable to memory exhaustion or a denial of service. The parsed regexp representation is linear in the input size. Still, in some cases, the constant factor can be as high as 40,000, making a relatively small regexp consume larger amounts of memory. After the fix, each regexp being parsed is limited to a 256 MB memory footprint. Regular expressions whose representation would use more space than that are rejected. Routine use of regular expressions is unaffected.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: regexp/syntax: limit memory used by parsing regexps",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-41715"
        },
        {
          "category": "external",
          "summary": "RHBZ#2132872",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2132872"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-41715",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-41715"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41715",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41715"
        },
        {
          "category": "external",
          "summary": "https://github.com/golang/go/issues/55949",
          "url": "https://github.com/golang/go/issues/55949"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/xtuG5faxtaU?pli=1",
          "url": "https://groups.google.com/g/golang-announce/c/xtuG5faxtaU?pli=1"
        }
      ],
      "release_date": "2022-10-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: regexp/syntax: limit memory used by parsing regexps"
    },
    {
      "cve": "CVE-2022-41717",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2023-01-16T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2161274"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the net/http library of the golang package. This flaw allows an attacker to cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate approximately 64 MiB per open connection.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Within Red Hat OpenShift Container Platform, the grafana container is listed as will not fix. Since OCP 4.10, Grafana itself is not shipped and the Grafana web server is protected behind an OAuth proxy server.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
        ],
        "known_not_affected": [
          "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
          "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
          "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
          "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
          "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
          "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "RHBZ#2161274",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2161274"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-41717",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41717",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/455635",
          "url": "https://go.dev/cl/455635"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/455717",
          "url": "https://go.dev/cl/455717"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/56350",
          "url": "https://go.dev/issue/56350"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/L_3rmdT0BMU/m/yZDrXjIiBQAJ",
          "url": "https://groups.google.com/g/golang-announce/c/L_3rmdT0BMU/m/yZDrXjIiBQAJ"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2022-1144",
          "url": "https://pkg.go.dev/vuln/GO-2022-1144"
        }
      ],
      "release_date": "2022-11-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-03-30T00:42:39+00:00",
          "details": "The Service Telemetry Framework container image provided by this update can be downloaded from the Red Hat Container Registry at registry.access.redhat.com. Installation instructions for your platform are available at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image specifically, or to the latest image generally.",
          "product_ids": [
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:1529"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-STF-1.5:stf/prometheus-webhook-snmp-rhel8@sha256:a53c3dc5955a72913788a3eeda32f725b2f5ef6e893022cc358f20414eb5074f_amd64",
            "8Base-STF-1.5:stf/service-telemetry-operator-bundle@sha256:617009676fbc385e222f144f79819b2cdcdafb28ae8674a53cdf8676f69d3717_amd64",
            "8Base-STF-1.5:stf/service-telemetry-rhel8-operator@sha256:f71352691d5e680eb09a67ef2e7208a40a10a0b781b451150ced7408dfc603d0_amd64",
            "8Base-STF-1.5:stf/sg-bridge-rhel8@sha256:d42174e8f6fbc91666ee2d78483f362f4de3f0ea551ea6d2bf310dadb1b5ba28_amd64",
            "8Base-STF-1.5:stf/sg-core-rhel8@sha256:f3ac213d5ff7470ad8a9175fa699033c5c2ee7cd6cf5eb5f4e081de00e94cd37_amd64",
            "8Base-STF-1.5:stf/smart-gateway-operator-bundle@sha256:08209b33986a186c90ec84140c833fdd892358583d3a7cb8c73f4732fe210546_amd64",
            "8Base-STF-1.5:stf/smart-gateway-rhel8-operator@sha256:9ea6481e460623bd551f5facb1d8cee105103ad380a32cb3efcc0714b60db471_amd64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests"
    }
  ]
}

RHSA-2023:3914

Vulnerability from csaf_redhat - Published: 2023-07-06 02:47 - Updated: 2026-05-15 02:21

Summary

Red Hat Security Advisory: Red Hat OpenShift Enterprise security update

Severity

Important

Notes

Topic: Red Hat OpenShift Container Platform release 4.11.44 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.11. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.44. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2023:3915 Security Fix(es): * openshift: OCP & FIPS mode (CVE-2023-3089) * golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540) * golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772) * golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675) * golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327) * golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717) * golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html

CVE-2022-23772

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix

Known not affected 134 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64		—

Threats

Impact Moderate

CVE-2022-24675

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-120 - Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

Affected products

Fixed 21 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix

Known not affected 134 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64		—

Threats

Impact Moderate

CVE-2022-28327

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 97 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix

Known not affected 58 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—

Threats

Impact Moderate

CVE-2022-30629

3.1 (Low)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

CWE-331 - Insufficient Entropy

Affected products

Fixed 63 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix

Known not affected 92 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64		—

Threats

Impact Low

CVE-2022-41717

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

CWE-770 - Allocation of Resources Without Limits or Throttling

Affected products

Fixed 5 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64	—	Vendor Fix fix

Known not affected 150 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64		—

Threats

Impact Moderate

CVE-2023-3089

A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.

6.5 (Medium)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N

CWE-327 - Use of a Broken or Risky Cryptographic Algorithm

Affected products

Fixed 8 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64	—	Vendor Fix fix Workaround

Known not affected 147 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Workaround

Threats

Impact Moderate

CVE-2023-24540

A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-176 - Improper Handling of Unicode Encoding

Affected products

Fixed 84 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x	—	Vendor Fix fix Workaround
Unresolved product id: 8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64	—	Vendor Fix fix Workaround

Known not affected 71 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x	—	Workaround
Unresolved product id: 8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64	—	Workaround

Threats

Impact Important

References

50 references

URL	Category
https://access.redhat.com/errata/RHSA-2023:3914	self
https://access.redhat.com/security/updates/classi…	external
https://access.redhat.com/security/vulnerabilitie…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://bugzilla.redhat.com/show_bug.cgi?id=2077688	external
https://bugzilla.redhat.com/show_bug.cgi?id=2077689	external
https://bugzilla.redhat.com/show_bug.cgi?id=2092793	external
https://bugzilla.redhat.com/show_bug.cgi?id=2161274	external
https://bugzilla.redhat.com/show_bug.cgi?id=2196027	external
https://bugzilla.redhat.com/show_bug.cgi?id=2212085	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-23772	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://www.cve.org/CVERecord?id=CVE-2022-23772	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23772	external
https://groups.google.com/g/golang-announce/c/SUs…	external
https://access.redhat.com/security/cve/CVE-2022-24675	self
https://bugzilla.redhat.com/show_bug.cgi?id=2077688	external
https://www.cve.org/CVERecord?id=CVE-2022-24675	external
https://nvd.nist.gov/vuln/detail/CVE-2022-24675	external
https://groups.google.com/g/golang-announce/c/oec…	external
https://access.redhat.com/security/cve/CVE-2022-28327	self
https://bugzilla.redhat.com/show_bug.cgi?id=2077689	external
https://www.cve.org/CVERecord?id=CVE-2022-28327	external
https://nvd.nist.gov/vuln/detail/CVE-2022-28327	external
https://access.redhat.com/security/cve/CVE-2022-30629	self
https://bugzilla.redhat.com/show_bug.cgi?id=2092793	external
https://www.cve.org/CVERecord?id=CVE-2022-30629	external
https://nvd.nist.gov/vuln/detail/CVE-2022-30629	external
https://groups.google.com/g/golang-announce/c/TzI…	external
https://access.redhat.com/security/cve/CVE-2022-41717	self
https://bugzilla.redhat.com/show_bug.cgi?id=2161274	external
https://www.cve.org/CVERecord?id=CVE-2022-41717	external
https://nvd.nist.gov/vuln/detail/CVE-2022-41717	external
https://go.dev/cl/455635	external
https://go.dev/cl/455717	external
https://go.dev/issue/56350	external
https://groups.google.com/g/golang-announce/c/L_3…	external
https://pkg.go.dev/vuln/GO-2022-1144	external
https://access.redhat.com/security/cve/CVE-2023-3089	self
https://bugzilla.redhat.com/show_bug.cgi?id=2212085	external
https://access.redhat.com/security/vulnerabilitie…	external
https://www.cve.org/CVERecord?id=CVE-2023-3089	external
https://nvd.nist.gov/vuln/detail/CVE-2023-3089	external
https://access.redhat.com/security/cve/CVE-2023-24540	self
https://bugzilla.redhat.com/show_bug.cgi?id=2196027	external
https://www.cve.org/CVERecord?id=CVE-2023-24540	external
https://nvd.nist.gov/vuln/detail/CVE-2023-24540	external
https://go.dev/issue/59721	external
https://groups.google.com/g/golang-announce/c/MEb…	external

Acknowledgments

Red Hat David Benoit

Mattermost Juho Nurminen

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.11.44 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.11.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.44. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:3915\n\nSecurity Fix(es):\n\n* openshift: OCP \u0026 FIPS mode (CVE-2023-3089)\n\n* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)\n\n* golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772)\n\n* golang: encoding/pem: fix stack overflow in Decode (CVE-2022-24675)\n\n* golang: crypto/elliptic: panic caused by oversized scalar (CVE-2022-28327)\n\n* golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests (CVE-2022-41717)\n\n* golang: crypto/tls: session tickets lack random ticket_age_add (CVE-2022-30629)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:3914",
        "url": "https://access.redhat.com/errata/RHSA-2023:3914"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-001",
        "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-001"
      },
      {
        "category": "external",
        "summary": "2053532",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
      },
      {
        "category": "external",
        "summary": "2077688",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688"
      },
      {
        "category": "external",
        "summary": "2077689",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689"
      },
      {
        "category": "external",
        "summary": "2092793",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793"
      },
      {
        "category": "external",
        "summary": "2161274",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2161274"
      },
      {
        "category": "external",
        "summary": "2196027",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
      },
      {
        "category": "external",
        "summary": "2212085",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212085"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_3914.json"
      }
    ],
    "title": "Red Hat Security Advisory: Red Hat OpenShift Enterprise security update",
    "tracking": {
      "current_release_date": "2026-05-15T02:21:48+00:00",
      "generator": {
        "date": "2026-05-15T02:21:48+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.8.0"
        }
      },
      "id": "RHSA-2023:3914",
      "initial_release_date": "2023-07-06T02:47:40+00:00",
      "revision_history": [
        {
          "date": "2023-07-06T02:47:40+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-07-06T02:47:40+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-05-15T02:21:48+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.11",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11",
                  "product_id": "8Base-RHOSE-4.11",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.11::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "buildah-1:1.23.4-3.rhaos4.11.el8.src",
                "product": {
                  "name": "buildah-1:1.23.4-3.rhaos4.11.el8.src",
                  "product_id": "buildah-1:1.23.4-3.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah@1.23.4-3.rhaos4.11.el8?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.1.2-3.rhaos4.11.el8.src",
                "product": {
                  "name": "conmon-2:2.1.2-3.rhaos4.11.el8.src",
                  "product_id": "conmon-2:2.1.2-3.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.1.2-3.rhaos4.11.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
                "product": {
                  "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
                  "product_id": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins@1.0.1-6.rhaos4.11.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
                "product": {
                  "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
                  "product_id": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
                  "product_id": "openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.11.0-202306260054.p0.g990d55b.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
                  "product_id": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
                  "product_id": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
                  "product_id": "openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr@4.11.0-202306280915.p0.gc732699.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-2:4.0.2-7.rhaos4.11.el8.src",
                "product": {
                  "name": "podman-2:4.0.2-7.rhaos4.11.el8.src",
                  "product_id": "podman-2:4.0.2-7.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman@4.0.2-7.rhaos4.11.el8?arch=src\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-3:1.1.2-2.rhaos4.11.el8.src",
                "product": {
                  "name": "runc-3:1.1.2-2.rhaos4.11.el8.src",
                  "product_id": "runc-3:1.1.2-2.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc@1.1.2-2.rhaos4.11.el8?arch=src\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.src",
                "product": {
                  "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.src",
                  "product_id": "skopeo-2:1.5.2-4.rhaos4.11.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo@1.5.2-4.rhaos4.11.el8?arch=src\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_id": "buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah@1.23.4-3.rhaos4.11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_id": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests@1.23.4-3.rhaos4.11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_id": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debugsource@1.23.4-3.rhaos4.11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_id": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debuginfo@1.23.4-3.rhaos4.11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_id": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.23.4-3.rhaos4.11.el8?arch=x86_64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_id": "conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.1.2-3.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_id": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debugsource@2.1.2-3.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_id": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.2-3.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_id": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins@1.0.1-6.rhaos4.11.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_id": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.0.1-6.rhaos4.11.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_id": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.0.1-6.rhaos4.11.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_id": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202306260054.p0.g990d55b.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                "product": {
                  "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                  "product_id": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                "product": {
                  "name": "openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                  "product_id": "openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-tests@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debugsource@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debuginfo@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_id": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.0.2-7.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_id": "runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc@1.1.2-2.rhaos4.11.el8?arch=x86_64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_id": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debugsource@1.1.2-2.rhaos4.11.el8?arch=x86_64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_id": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debuginfo@1.1.2-2.rhaos4.11.el8?arch=x86_64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_id": "skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo@1.5.2-4.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_id": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-tests@1.5.2-4.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_id": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debugsource@1.5.2-4.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                "product": {
                  "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_id": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debuginfo@1.5.2-4.rhaos4.11.el8?arch=x86_64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_id": "buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah@1.23.4-3.rhaos4.11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_id": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests@1.23.4-3.rhaos4.11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_id": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debugsource@1.23.4-3.rhaos4.11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_id": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debuginfo@1.23.4-3.rhaos4.11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_id": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.23.4-3.rhaos4.11.el8?arch=aarch64\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_id": "conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.1.2-3.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_id": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debugsource@2.1.2-3.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_id": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.2-3.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_id": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins@1.0.1-6.rhaos4.11.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_id": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.0.1-6.rhaos4.11.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_id": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.0.1-6.rhaos4.11.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                "product": {
                  "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_id": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                "product": {
                  "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_id": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_id": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
                "product": {
                  "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
                  "product_id": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202306260054.p0.g990d55b.assembly.stream.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
                "product": {
                  "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
                  "product_id": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-tests@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debugsource@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debuginfo@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_id": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.0.2-7.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_id": "runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc@1.1.2-2.rhaos4.11.el8?arch=aarch64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_id": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debugsource@1.1.2-2.rhaos4.11.el8?arch=aarch64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_id": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debuginfo@1.1.2-2.rhaos4.11.el8?arch=aarch64\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_id": "skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo@1.5.2-4.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_id": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-tests@1.5.2-4.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_id": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debugsource@1.5.2-4.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                "product": {
                  "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_id": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debuginfo@1.5.2-4.rhaos4.11.el8?arch=aarch64\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_id": "buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah@1.23.4-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_id": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests@1.23.4-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_id": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debugsource@1.23.4-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_id": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debuginfo@1.23.4-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_id": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.23.4-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_id": "conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.1.2-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_id": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debugsource@2.1.2-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_id": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.2-3.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_id": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins@1.0.1-6.rhaos4.11.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_id": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.0.1-6.rhaos4.11.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_id": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.0.1-6.rhaos4.11.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                "product": {
                  "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_id": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202306260054.p0.g990d55b.assembly.stream.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
                  "product_id": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-tests@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debugsource@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debuginfo@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_id": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.0.2-7.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_id": "runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc@1.1.2-2.rhaos4.11.el8?arch=ppc64le\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_id": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debugsource@1.1.2-2.rhaos4.11.el8?arch=ppc64le\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_id": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debuginfo@1.1.2-2.rhaos4.11.el8?arch=ppc64le\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_id": "skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo@1.5.2-4.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_id": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-tests@1.5.2-4.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_id": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debugsource@1.5.2-4.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                "product": {
                  "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_id": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debuginfo@1.5.2-4.rhaos4.11.el8?arch=ppc64le\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_id": "buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah@1.23.4-3.rhaos4.11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_id": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests@1.23.4-3.rhaos4.11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_id": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debugsource@1.23.4-3.rhaos4.11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_id": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-debuginfo@1.23.4-3.rhaos4.11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_id": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.23.4-3.rhaos4.11.el8?arch=s390x\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_id": "conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon@2.1.2-3.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_id": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debugsource@2.1.2-3.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
                "product": {
                  "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_id": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/conmon-debuginfo@2.1.2-3.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
                "product": {
                  "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_id": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins@1.0.1-6.rhaos4.11.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
                "product": {
                  "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_id": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.0.1-6.rhaos4.11.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
                "product": {
                  "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_id": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.0.1-6.rhaos4.11.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                "product": {
                  "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_id": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_id": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_id": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.24.6-2.rhaos4.11.git4bfe15a.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
                  "product_id": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202306260054.p0.g990d55b.assembly.stream.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
                "product": {
                  "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
                  "product_id": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-tests@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debugsource@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-catatonit-debuginfo@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-debuginfo@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-gvproxy-debuginfo@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-plugins-debuginfo@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                "product": {
                  "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_id": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-remote-debuginfo@4.0.2-7.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-3:1.1.2-2.rhaos4.11.el8.s390x",
                "product": {
                  "name": "runc-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_id": "runc-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc@1.1.2-2.rhaos4.11.el8?arch=s390x\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
                "product": {
                  "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_id": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debugsource@1.1.2-2.rhaos4.11.el8?arch=s390x\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
                "product": {
                  "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_id": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/runc-debuginfo@1.1.2-2.rhaos4.11.el8?arch=s390x\u0026epoch=3"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
                "product": {
                  "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_id": "skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo@1.5.2-4.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
                "product": {
                  "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_id": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-tests@1.5.2-4.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
                "product": {
                  "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_id": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debugsource@1.5.2-4.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
                "product": {
                  "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_id": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/skopeo-debuginfo@1.5.2-4.rhaos4.11.el8?arch=s390x\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                  "product_id": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                  "product_id": "openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_id": "openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-cni@4.11.0-202306280915.p0.gc732699.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_id": "openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-common@4.11.0-202306280915.p0.gc732699.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_id": "openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-kuryr-controller@4.11.0-202306280915.p0.gc732699.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                "product": {
                  "name": "python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_id": "python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python3-kuryr-kubernetes@4.11.0-202306280915.p0.gc732699.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
                "product": {
                  "name": "podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
                  "product_id": "podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/podman-docker@4.0.2-7.rhaos4.11.el8?arch=noarch\u0026epoch=2"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-1:1.23.4-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-1:1.23.4-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-1:1.23.4-3.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src"
        },
        "product_reference": "buildah-1:1.23.4-3.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-1:1.23.4-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.1.2-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.1.2-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.1.2-3.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src"
        },
        "product_reference": "conmon-2:2.1.2-3.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-2:2.1.2-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64"
        },
        "product_reference": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x"
        },
        "product_reference": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64"
        },
        "product_reference": "conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64"
        },
        "product_reference": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x"
        },
        "product_reference": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src"
        },
        "product_reference": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64"
        },
        "product_reference": "containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64"
        },
        "product_reference": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x"
        },
        "product_reference": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64"
        },
        "product_reference": "containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64"
        },
        "product_reference": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x"
        },
        "product_reference": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64"
        },
        "product_reference": "containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64"
        },
        "product_reference": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le"
        },
        "product_reference": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x"
        },
        "product_reference": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src"
        },
        "product_reference": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64"
        },
        "product_reference": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64"
        },
        "product_reference": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src"
        },
        "product_reference": "openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src"
        },
        "product_reference": "openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64"
        },
        "product_reference": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le"
        },
        "product_reference": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x"
        },
        "product_reference": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src"
        },
        "product_reference": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64"
        },
        "product_reference": "openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64"
        },
        "product_reference": "openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64"
        },
        "product_reference": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src"
        },
        "product_reference": "openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-2:4.0.2-7.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src"
        },
        "product_reference": "podman-2:4.0.2-7.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch"
        },
        "product_reference": "podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64"
        },
        "product_reference": "podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x"
        },
        "product_reference": "podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64"
        },
        "product_reference": "podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
        },
        "product_reference": "python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-3:1.1.2-2.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64"
        },
        "product_reference": "runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-3:1.1.2-2.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-3:1.1.2-2.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x"
        },
        "product_reference": "runc-3:1.1.2-2.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-3:1.1.2-2.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src"
        },
        "product_reference": "runc-3:1.1.2-2.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-3:1.1.2-2.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64"
        },
        "product_reference": "runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64"
        },
        "product_reference": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x"
        },
        "product_reference": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64"
        },
        "product_reference": "runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64"
        },
        "product_reference": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x"
        },
        "product_reference": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64"
        },
        "product_reference": "runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64"
        },
        "product_reference": "skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x"
        },
        "product_reference": "skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src"
        },
        "product_reference": "skopeo-2:1.5.2-4.rhaos4.11.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64"
        },
        "product_reference": "skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64"
        },
        "product_reference": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x"
        },
        "product_reference": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64"
        },
        "product_reference": "skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64"
        },
        "product_reference": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x"
        },
        "product_reference": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64"
        },
        "product_reference": "skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64"
        },
        "product_reference": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le"
        },
        "product_reference": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x"
        },
        "product_reference": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
          "product_id": "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        },
        "product_reference": "skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.11"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053532"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053532",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23772",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString"
    },
    {
      "cve": "CVE-2022-24675",
      "cwe": {
        "id": "CWE-120",
        "name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
      },
      "discovery_date": "2022-04-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2077688"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A buffer overflow flaw was found in Golang\u0027s library encoding/pem. This flaw allows an attacker to use a large PEM input (more than 5 MB), causing a stack overflow in Decode, which leads to a loss of availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: encoding/pem: fix stack overflow in Decode",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope.\n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "RHBZ#2077688",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077688"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24675",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24675"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8",
          "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8"
        }
      ],
      "release_date": "2022-04-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: encoding/pem: fix stack overflow in Decode"
    },
    {
      "cve": "CVE-2022-28327",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-04-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2077689"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An integer overflow flaw was found in Golang\u0027s crypto/elliptic library. This flaw allows an attacker to use a crafted scaler input longer than 32 bytes, causing P256().ScalarMult or P256().ScalarBaseMult to panic, leading to a loss of availability.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: crypto/elliptic: panic caused by oversized scalar",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "A moderate severity flaw was found in Go\u2019s crypto/elliptic package in the generic P-256 implementation. If a scalar input longer than 32 bytes is supplied, P256().ScalarMult or P256().ScalarBaseMult can panic, causing the application to crash. Indirect uses via crypto/ecdsa and crypto/tls are not affected. This issue impacts availability but does not affect confidentiality or integrity. Only certain platforms (non-amd64, non-arm64, non-ppc64le, non-s390x) may be affected.\n\nRed Hat Enterprise Linux 7, 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nRed Hat Developer Tools - Compilers (go-toolset-1.16-golang \u0026 go-toolset-1.17-golang), ships the vulnerable code and affected by this vulnerability.\n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "RHBZ#2077689",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2077689"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-28327",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28327"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8",
          "url": "https://groups.google.com/g/golang-announce/c/oecdBNLOml8"
        }
      ],
      "release_date": "2022-04-12T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: crypto/elliptic: panic caused by oversized scalar"
    },
    {
      "cve": "CVE-2022-30629",
      "cwe": {
        "id": "CWE-331",
        "name": "Insufficient Entropy"
      },
      "discovery_date": "2022-06-02T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2092793"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the crypto/tls golang package. When session tickets are generated by crypto/tls, it is missing the ticket expiration. This issue may allow an attacker to observe the TLS handshakes to correlate successive connections during session resumption.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: crypto/tls: session tickets lack random ticket_age_add",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "RHBZ#2092793",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2092793"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-30629",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-30629"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg",
          "url": "https://groups.google.com/g/golang-announce/c/TzIC9-t8Ytg"
        }
      ],
      "release_date": "2022-06-02T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.1,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "golang: crypto/tls: session tickets lack random ticket_age_add"
    },
    {
      "cve": "CVE-2022-41717",
      "cwe": {
        "id": "CWE-770",
        "name": "Allocation of Resources Without Limits or Throttling"
      },
      "discovery_date": "2023-01-16T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2161274"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the net/http library of the golang package. This flaw allows an attacker to cause excessive memory growth in a Go server accepting HTTP/2 requests. HTTP/2 server connections contain a cache of HTTP header keys sent by the client. While the total number of entries in this cache is capped, an attacker sending very large keys can cause the server to allocate approximately 64 MiB per open connection.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Within Red Hat OpenShift Container Platform, the grafana container is listed as will not fix. Since OCP 4.10, Grafana itself is not shipped and the Grafana web server is protected behind an OAuth proxy server.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "RHBZ#2161274",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2161274"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-41717",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41717",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41717"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/455635",
          "url": "https://go.dev/cl/455635"
        },
        {
          "category": "external",
          "summary": "https://go.dev/cl/455717",
          "url": "https://go.dev/cl/455717"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/56350",
          "url": "https://go.dev/issue/56350"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/L_3rmdT0BMU/m/yZDrXjIiBQAJ",
          "url": "https://groups.google.com/g/golang-announce/c/L_3rmdT0BMU/m/yZDrXjIiBQAJ"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2022-1144",
          "url": "https://pkg.go.dev/vuln/GO-2022-1144"
        }
      ],
      "release_date": "2022-11-30T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "David Benoit"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        }
      ],
      "cve": "CVE-2023-3089",
      "cwe": {
        "id": "CWE-327",
        "name": "Use of a Broken or Risky Cryptographic Algorithm"
      },
      "discovery_date": "2023-06-03T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2212085"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A compliance problem was found in the Red Hat OpenShift Container Platform. Red Hat discovered that, when FIPS mode was enabled, not all of the cryptographic modules in use were FIPS-validated.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openshift: OCP \u0026 FIPS mode",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-001\n\nThe static scanning tool (to verify your system is once again compliant with FIPS) is available here https://github.com/openshift/check-payload",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-3089"
        },
        {
          "category": "external",
          "summary": "RHBZ#2212085",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212085"
        },
        {
          "category": "external",
          "summary": "RHSB-2023-001",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-001"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-3089",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-3089"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-3089",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3089"
        }
      ],
      "release_date": "2023-07-05T12:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        },
        {
          "category": "workaround",
          "details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected packages as soon as possible.",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:L/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "openshift: OCP \u0026 FIPS mode"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Juho Nurminen"
          ],
          "organization": "Mattermost"
        }
      ],
      "cve": "CVE-2023-24540",
      "cwe": {
        "id": "CWE-176",
        "name": "Improper Handling of Unicode Encoding"
      },
      "discovery_date": "2023-05-07T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2196027"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set \"\\t\\n\\f\\r\\u0020\\u2028\\u2029\" in JavaScript contexts that also contain actions may not be properly sanitized during execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: html/template: improper handling of JavaScript whitespace",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "For Red Hat Enterprise Linux,\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore the impact is low.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
          "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
          "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
          "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
          "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
          "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-24540"
        },
        {
          "category": "external",
          "summary": "RHBZ#2196027",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-24540",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/59721",
          "url": "https://go.dev/issue/59721"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
          "url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
        }
      ],
      "release_date": "2023-04-20T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-07-06T02:47:40+00:00",
          "details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:3914"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
          "product_ids": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:buildah-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-debugsource-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:buildah-tests-debuginfo-1:1.23.4-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:conmon-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debuginfo-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:conmon-debugsource-2:2.1.2-3.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:containernetworking-plugins-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debuginfo-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:containernetworking-plugins-debugsource-0:1.0.1-6.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.src",
            "8Base-RHOSE-4.11:cri-o-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debuginfo-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.aarch64",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.ppc64le",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.s390x",
            "8Base-RHOSE-4.11:cri-o-debugsource-0:1.24.6-2.rhaos4.11.git4bfe15a.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-ansible-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-ansible-test-0:4.11.0-202306230041.p0.g0a466d7.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202306231116.p0.g2ae2303.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202306260054.p0.g990d55b.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.11:openshift-kuryr-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.src",
            "8Base-RHOSE-4.11:openshift-kuryr-cni-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-common-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:openshift-kuryr-controller-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:podman-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-catatonit-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-debugsource-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-docker-2:4.0.2-7.rhaos4.11.el8.noarch",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-gvproxy-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-plugins-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-remote-debuginfo-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:podman-tests-2:4.0.2-7.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:python3-kuryr-kubernetes-0:4.11.0-202306280915.p0.gc732699.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:runc-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debuginfo-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:runc-debugsource-3:1.1.2-2.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.src",
            "8Base-RHOSE-4.11:skopeo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debuginfo-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-debugsource-2:1.5.2-4.rhaos4.11.el8.x86_64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.aarch64",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.ppc64le",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.s390x",
            "8Base-RHOSE-4.11:skopeo-tests-2:1.5.2-4.rhaos4.11.el8.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "golang: html/template: improper handling of JavaScript whitespace"
    }
  ]
}

RHSA-2024:5754

Vulnerability from csaf_redhat - Published: 2024-08-28 19:35 - Updated: 2026-04-29 18:23

Summary

Red Hat Security Advisory: OpenShift Container Platform 4.15.29 packages and security update

Severity

Moderate

Notes

Topic: Red Hat OpenShift Container Platform release 4.15.29 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.15.29. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHBA-2024:5751 Security Fix(es): * golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.15 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html

CVE-2022-23772

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 10 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64	—	Vendor Fix fix

Known not affected 36 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64		—

Threats

Impact Moderate

References

9 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:5754	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-23772	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://www.cve.org/CVERecord?id=CVE-2022-23772	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23772	external
https://groups.google.com/g/golang-announce/c/SUs…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.15.29 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.15.\n\nRed Hat Product Security has rated this update as having a security impact of  Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.15.29. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHBA-2024:5751\n\nSecurity Fix(es):\n\n* golang: math/big: uncontrolled memory consumption due to an unhandled\noverflow via Rat.SetString (CVE-2022-23772)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.15 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.15/updating/updating_a_cluster/updating-cluster-cli.html",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:5754",
        "url": "https://access.redhat.com/errata/RHSA-2024:5754"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2053532",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_5754.json"
      }
    ],
    "title": "Red Hat Security Advisory: OpenShift Container Platform 4.15.29 packages and security update",
    "tracking": {
      "current_release_date": "2026-04-29T18:23:56+00:00",
      "generator": {
        "date": "2026-04-29T18:23:56+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2024:5754",
      "initial_release_date": "2024-08-28T19:35:22+00:00",
      "revision_history": [
        {
          "date": "2024-08-28T19:35:22+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-08-28T19:35:22+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-29T18:23:56+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.15",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.15",
                  "product_id": "8Base-RHOSE-4.15",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.15::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.15",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.15",
                  "product_id": "9Base-RHOSE-4.15",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.15::el9"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
                  "product_id": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
                "product": {
                  "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
                  "product_id": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                "product": {
                  "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_id": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_id": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_id": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.28.9-6.rhaos4.15.git8429b0b.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
                  "product_id": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src"
        },
        "product_reference": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64"
        },
        "product_reference": "cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src"
        },
        "product_reference": "openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.15",
          "product_id": "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.15"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053532"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
          "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
          "9Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
          "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
          "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
          "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
          "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
          "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
          "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
          "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
          "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
          "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
          "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
          "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
          "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
          "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
          "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
          "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
          "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
          "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
          "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
          "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
          "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
          "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
          "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
          "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
          "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
          "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
          "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
          "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
          "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
          "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
          "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053532",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23772",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-08-28T19:35:22+00:00",
          "details": "For OpenShift Container Platform 4.15 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.15/release_notes/ocp-4-15-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:5754"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.src",
            "8Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.aarch64",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.ppc64le",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.s390x",
            "8Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el8.x86_64",
            "8Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.src",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.src",
            "8Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.src",
            "9Base-RHOSE-4.15:cri-o-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-debuginfo-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.aarch64",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.ppc64le",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.s390x",
            "9Base-RHOSE-4.15:cri-o-debugsource-0:1.28.9-6.rhaos4.15.git8429b0b.el9.x86_64",
            "9Base-RHOSE-4.15:openshift-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.src",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.15:openshift-hyperkube-0:4.15.0-202408131909.p0.gbc3c7c5.assembly.stream.el9.x86_64",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.src",
            "9Base-RHOSE-4.15:ose-aws-ecr-image-credential-provider-0:4.15.0-202408200739.p0.gfd77d92.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString"
    }
  ]
}

RHSA-2024:6412

Vulnerability from csaf_redhat - Published: 2024-09-11 18:52 - Updated: 2026-04-29 18:24

Summary

Red Hat Security Advisory: OpenShift Container Platform 4.14.36 security update

Severity

Moderate

Notes

Topic: Red Hat OpenShift Container Platform release 4.14.36 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.14. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments. This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.14.36. See the following advisory for the container images for this release: https://access.redhat.com/errata/RHSA-2024:6406 Security Fix(es): * golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString (CVE-2022-23772) * haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers (CVE-2023-45539) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. All OpenShift Container Platform 4.14 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.14/updating/updating_a_cluster/updating-cluster-cli.html

CVE-2022-23772

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-190 - Integer Overflow or Wraparound

Affected products

Fixed 10 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x	—	Vendor Fix fix
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64	—	Vendor Fix fix

Known not affected 55 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64		—

Threats

Impact Moderate

CVE-2023-45539

HAProxy before 2.8.2 accepts # as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a path_end rule, such as routing index.html#.png to a static server.

5.3 (Medium)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CWE-288 - Authentication Bypass Using an Alternate Path or Channel

Affected products

Fixed 13 products

Product	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x	—	Vendor Fix fix
Unresolved product id: 8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64	—	Vendor Fix fix

Known not affected 52 products

Product	Identifier	Version	Remediation
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src		—
Unresolved product id: 8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src		—
Unresolved product id: 9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64		—

Threats

Impact Moderate

References

14 references

URL	Category
https://access.redhat.com/errata/RHSA-2024:6412	self
https://access.redhat.com/security/updates/classi…	external
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://bugzilla.redhat.com/show_bug.cgi?id=2253037	external
https://security.access.redhat.com/data/csaf/v2/a…	self
https://access.redhat.com/security/cve/CVE-2022-23772	self
https://bugzilla.redhat.com/show_bug.cgi?id=2053532	external
https://www.cve.org/CVERecord?id=CVE-2022-23772	external
https://nvd.nist.gov/vuln/detail/CVE-2022-23772	external
https://groups.google.com/g/golang-announce/c/SUs…	external
https://access.redhat.com/security/cve/CVE-2023-45539	self
https://bugzilla.redhat.com/show_bug.cgi?id=2253037	external
https://www.cve.org/CVERecord?id=CVE-2023-45539	external
https://nvd.nist.gov/vuln/detail/CVE-2023-45539	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Red Hat OpenShift Container Platform release 4.14.36 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.14.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.14.36. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2024:6406\n\nSecurity Fix(es):\n\n* golang: math/big: uncontrolled memory consumption due to an unhandled\noverflow via Rat.SetString (CVE-2022-23772)\n* haproxy: untrimmed URI fragments may lead to exposure of confidential\ndata on static servers (CVE-2023-45539)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.14/updating/updating_a_cluster/updating-cluster-cli.html",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2024:6412",
        "url": "https://access.redhat.com/errata/RHSA-2024:6412"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#moderate",
        "url": "https://access.redhat.com/security/updates/classification/#moderate"
      },
      {
        "category": "external",
        "summary": "2053532",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
      },
      {
        "category": "external",
        "summary": "2253037",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253037"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6412.json"
      }
    ],
    "title": "Red Hat Security Advisory: OpenShift Container Platform 4.14.36 security update",
    "tracking": {
      "current_release_date": "2026-04-29T18:24:01+00:00",
      "generator": {
        "date": "2026-04-29T18:24:01+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.7.7"
        }
      },
      "id": "RHSA-2024:6412",
      "initial_release_date": "2024-09-11T18:52:41+00:00",
      "revision_history": [
        {
          "date": "2024-09-11T18:52:41+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2024-09-11T18:52:41+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2026-04-29T18:24:01+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.14",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.14",
                  "product_id": "9Base-RHOSE-4.14",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.14::el9"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat OpenShift Container Platform 4.14",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.14",
                  "product_id": "8Base-RHOSE-4.14",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.14::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat OpenShift Enterprise"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
                "product": {
                  "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
                  "product_id": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
                "product": {
                  "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
                  "product_id": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.14.0-202409041843.p0.g03a907c.assembly.stream.el9?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy-0:2.6.13-4.rhaos4.14.el8.src",
                "product": {
                  "name": "haproxy-0:2.6.13-4.rhaos4.14.el8.src",
                  "product_id": "haproxy-0:2.6.13-4.rhaos4.14.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy@2.6.13-4.rhaos4.14.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
                  "product_id": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
                "product": {
                  "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
                  "product_id": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift@4.14.0-202409041843.p0.g03a907c.assembly.stream.el8?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el9?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
                "product": {
                  "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_id": "haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26@2.6.13-4.rhaos4.14.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
                "product": {
                  "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_id": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy-debugsource@2.6.13-4.rhaos4.14.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
                "product": {
                  "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_id": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26-debuginfo@2.6.13-4.rhaos4.14.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el8?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el9?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
                "product": {
                  "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_id": "haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26@2.6.13-4.rhaos4.14.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
                "product": {
                  "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_id": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy-debugsource@2.6.13-4.rhaos4.14.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
                "product": {
                  "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_id": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26-debuginfo@2.6.13-4.rhaos4.14.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8?arch=aarch64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el8?arch=aarch64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el9?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                "product": {
                  "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_id": "haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26@2.6.13-4.rhaos4.14.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                "product": {
                  "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_id": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy-debugsource@2.6.13-4.rhaos4.14.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                "product": {
                  "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_id": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26-debuginfo@2.6.13-4.rhaos4.14.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8?arch=ppc64le"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el8?arch=ppc64le"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el9?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                "product": {
                  "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_id": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                "product": {
                  "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_id": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debugsource@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                "product": {
                  "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_id": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/cri-o-debuginfo@1.27.8-6.rhaos4.14.git06fccaa.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
                "product": {
                  "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_id": "haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26@2.6.13-4.rhaos4.14.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
                "product": {
                  "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_id": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy-debugsource@2.6.13-4.rhaos4.14.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
                "product": {
                  "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_id": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/haproxy26-debuginfo@2.6.13-4.rhaos4.14.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
                "product": {
                  "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
                  "product_id": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/ose-aws-ecr-image-credential-provider@4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
                "product": {
                  "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
                  "product_id": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-hyperkube@4.14.0-202409041843.p0.g03a907c.assembly.stream.el8?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                  "product_id": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                  "product_id": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                  "product_id": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                "product": {
                  "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                  "product_id": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/openshift-ansible-test@4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy-0:2.6.13-4.rhaos4.14.el8.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src"
        },
        "product_reference": "haproxy-0:2.6.13-4.rhaos4.14.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64"
        },
        "product_reference": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le"
        },
        "product_reference": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x"
        },
        "product_reference": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64"
        },
        "product_reference": "haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64"
        },
        "product_reference": "haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le"
        },
        "product_reference": "haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x"
        },
        "product_reference": "haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64"
        },
        "product_reference": "haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64"
        },
        "product_reference": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le"
        },
        "product_reference": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x"
        },
        "product_reference": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64"
        },
        "product_reference": "haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src"
        },
        "product_reference": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src"
        },
        "product_reference": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
        "relates_to_product_reference": "8Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64"
        },
        "product_reference": "cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64"
        },
        "product_reference": "cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64"
        },
        "product_reference": "cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src"
        },
        "product_reference": "openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch"
        },
        "product_reference": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src"
        },
        "product_reference": "openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch"
        },
        "product_reference": "openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64"
        },
        "product_reference": "openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64 as a component of Red Hat OpenShift Container Platform 4.14",
          "product_id": "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
        },
        "product_reference": "ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64",
        "relates_to_product_reference": "9Base-RHOSE-4.14"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "cwe": {
        "id": "CWE-190",
        "name": "Integer Overflow or Wraparound"
      },
      "discovery_date": "2022-02-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2053532"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux 8 and 9 are affected, because the code-base is affected by this vulnerability.\n\nRed Hat Product Security has rated this issue as having Moderate security impact, and the issue is not currently planned to be addressed in future updates for Red Hat Enterprise Linux 7, hence, marked as Out-of-Support-Scope. \n\nFor additional information, refer to the Issue Severity Classification: https://access.redhat.com/security/updates/classification/ and Red Hat Enterprise Linux Life Cycle \u0026 Updates Policy: https://access.redhat.com/support/policy/updates/errata/.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
          "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
          "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
          "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "RHBZ#2053532",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2053532"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-23772",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ",
          "url": "https://groups.google.com/g/golang-announce/c/SUsQn0aSgPQ"
        }
      ],
      "release_date": "2022-01-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-09-11T18:52:41+00:00",
          "details": "For OpenShift Container Platform 4.14 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.14/release_notes/ocp-4-14-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:6412"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString"
    },
    {
      "cve": "CVE-2023-45539",
      "cwe": {
        "id": "CWE-288",
        "name": "Authentication Bypass Using an Alternate Path or Channel"
      },
      "discovery_date": "2023-12-05T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2253037"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "HAProxy before 2.8.2 accepts # as part of the URI component, which might allow remote attackers to obtain sensitive information or have unspecified other impact upon misinterpretation of a path_end rule, such as routing index.html#.png to a static server.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
          "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64"
        ],
        "known_not_affected": [
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
          "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
          "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
          "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
          "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
          "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
          "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
          "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
          "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
          "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-45539"
        },
        {
          "category": "external",
          "summary": "RHBZ#2253037",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253037"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-45539",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-45539"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45539",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45539"
        }
      ],
      "release_date": "2023-11-28T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2024-09-11T18:52:41+00:00",
          "details": "For OpenShift Container Platform 4.14 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.14/release_notes/ocp-4-14-release-notes.html",
          "product_ids": [
            "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2024:6412"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.1"
          },
          "products": [
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.src",
            "8Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.aarch64",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.ppc64le",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.s390x",
            "8Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy-0:2.6.13-4.rhaos4.14.el8.src",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy-debugsource-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.aarch64",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.ppc64le",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.s390x",
            "8Base-RHOSE-4.14:haproxy26-debuginfo-0:2.6.13-4.rhaos4.14.el8.x86_64",
            "8Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el8.noarch",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el8.x86_64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.aarch64",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.ppc64le",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.s390x",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.src",
            "8Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el8.x86_64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.src",
            "9Base-RHOSE-4.14:cri-o-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debuginfo-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.aarch64",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.ppc64le",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.s390x",
            "9Base-RHOSE-4.14:cri-o-debugsource-0:1.27.8-6.rhaos4.14.git06fccaa.el9.x86_64",
            "9Base-RHOSE-4.14:openshift-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-ansible-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:openshift-ansible-test-0:4.14.0-202408291409.p0.g0a97acb.assembly.stream.el9.noarch",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:openshift-hyperkube-0:4.14.0-202409041843.p0.g03a907c.assembly.stream.el9.x86_64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.aarch64",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.ppc64le",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.s390x",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.src",
            "9Base-RHOSE-4.14:ose-aws-ecr-image-credential-provider-0:4.14.0-202408222141.p0.g9a7820e.assembly.stream.el9.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "haproxy: untrimmed URI fragments may lead to exposure of confidential data on static servers"
    }
  ]
}

SUSE-SU-2022:0723-1

Vulnerability from csaf_suse - Published: 2022-03-04 09:32 - Updated: 2022-03-04 09:32

Summary

Security update for go1.17

Severity

Important

Notes

Title of the patch: Security update for go1.17

Description of the patch: This update for go1.17 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50978 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50701 math/big: Rat.SetString may consume large amount of RAM and crash - go#50687 cmd/go: do not treat branches with semantic-version names as releases - go#50942 cmd/asm: 'compile: loop' compiler bug? - go#50867 cmd/compile: incorrect use of CMN on arm64 - go#50812 cmd/go: remove bitbucket VCS probing - go#50781 runtime: incorrect frame information in traceback traversal may hang the process. - go#50722 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50683 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50586 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50297 cmd/link: does not set section type of .init_array correctly - go#50246 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of 'plugin' Package

Patchnames: SUSE-2022-723,SUSE-SLE-Module-Development-Tools-15-SP3-2022-723,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-723,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-723,SUSE-SLE-Product-RT-15-SP2-2022-723,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-723,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-723,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-723,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-723,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-723,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-723,SUSE-Storage-7-2022-723

CVE-2022-23772

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-23773

5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-23806

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64	—	Vendor Fix

Threats

Impact important

References

19 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1190649	self
https://bugzilla.suse.com/1195834	self
https://bugzilla.suse.com/1195835	self
https://bugzilla.suse.com/1195838	self
https://www.suse.com/security/cve/CVE-2022-23772/	self
https://www.suse.com/security/cve/CVE-2022-23773/	self
https://www.suse.com/security/cve/CVE-2022-23806/	self
https://www.suse.com/security/cve/CVE-2022-23772	external
https://bugzilla.suse.com/1195835	external
https://www.suse.com/security/cve/CVE-2022-23773	external
https://bugzilla.suse.com/1195834	external
https://www.suse.com/security/cve/CVE-2022-23806	external
https://bugzilla.suse.com/1195838	external
https://bugzilla.suse.com/1206559	external
https://bugzilla.suse.com/1208723	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for go1.17",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for go1.17 fixes the following issues:\n\n- CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838).\n- CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835).\n- CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834).\n\nThe following non-security bugs were fixed:\n\n- go#50978 crypto/elliptic: IsOnCurve returns true for invalid field elements\n- go#50701 math/big: Rat.SetString may consume large amount of RAM and crash\n- go#50687 cmd/go: do not treat branches with semantic-version names as releases\n- go#50942 cmd/asm: \u0027compile: loop\u0027 compiler bug?\n- go#50867 cmd/compile: incorrect use of CMN on arm64\n- go#50812 cmd/go: remove bitbucket VCS probing\n- go#50781 runtime: incorrect frame information in traceback traversal may hang the process.\n- go#50722 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error\n- go#50683 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg\n- go#50586 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch\n- go#50297 cmd/link: does not set section type of .init_array correctly\n- go#50246 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of \u0027plugin\u0027 Package\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-723,SUSE-SLE-Module-Development-Tools-15-SP3-2022-723,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-723,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-723,SUSE-SLE-Product-RT-15-SP2-2022-723,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-723,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-723,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-723,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-723,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-723,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-723,SUSE-Storage-7-2022-723",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0723-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:0723-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20220723-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:0723-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-March/010351.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1190649",
        "url": "https://bugzilla.suse.com/1190649"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195834",
        "url": "https://bugzilla.suse.com/1195834"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195835",
        "url": "https://bugzilla.suse.com/1195835"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195838",
        "url": "https://bugzilla.suse.com/1195838"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23772 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23772/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23773 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23773/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23806 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23806/"
      }
    ],
    "title": "Security update for go1.17",
    "tracking": {
      "current_release_date": "2022-03-04T09:32:36Z",
      "generator": {
        "date": "2022-03-04T09:32:36Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:0723-1",
      "initial_release_date": "2022-03-04T09:32:36Z",
      "revision_history": [
        {
          "date": "2022-03-04T09:32:36Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.17-1.17.7-1.20.1.aarch64",
                "product": {
                  "name": "go1.17-1.17.7-1.20.1.aarch64",
                  "product_id": "go1.17-1.17.7-1.20.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-doc-1.17.7-1.20.1.aarch64",
                "product": {
                  "name": "go1.17-doc-1.17.7-1.20.1.aarch64",
                  "product_id": "go1.17-doc-1.17.7-1.20.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-race-1.17.7-1.20.1.aarch64",
                "product": {
                  "name": "go1.17-race-1.17.7-1.20.1.aarch64",
                  "product_id": "go1.17-race-1.17.7-1.20.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.17-1.17.7-1.20.1.i586",
                "product": {
                  "name": "go1.17-1.17.7-1.20.1.i586",
                  "product_id": "go1.17-1.17.7-1.20.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-doc-1.17.7-1.20.1.i586",
                "product": {
                  "name": "go1.17-doc-1.17.7-1.20.1.i586",
                  "product_id": "go1.17-doc-1.17.7-1.20.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.17-1.17.7-1.20.1.ppc64le",
                "product": {
                  "name": "go1.17-1.17.7-1.20.1.ppc64le",
                  "product_id": "go1.17-1.17.7-1.20.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-doc-1.17.7-1.20.1.ppc64le",
                "product": {
                  "name": "go1.17-doc-1.17.7-1.20.1.ppc64le",
                  "product_id": "go1.17-doc-1.17.7-1.20.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.17-1.17.7-1.20.1.s390x",
                "product": {
                  "name": "go1.17-1.17.7-1.20.1.s390x",
                  "product_id": "go1.17-1.17.7-1.20.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-doc-1.17.7-1.20.1.s390x",
                "product": {
                  "name": "go1.17-doc-1.17.7-1.20.1.s390x",
                  "product_id": "go1.17-doc-1.17.7-1.20.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.17-1.17.7-1.20.1.x86_64",
                "product": {
                  "name": "go1.17-1.17.7-1.20.1.x86_64",
                  "product_id": "go1.17-1.17.7-1.20.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-doc-1.17.7-1.20.1.x86_64",
                "product": {
                  "name": "go1.17-doc-1.17.7-1.20.1.x86_64",
                  "product_id": "go1.17-doc-1.17.7-1.20.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.17-race-1.17.7-1.20.1.x86_64",
                "product": {
                  "name": "go1.17-race-1.17.7-1.20.1.x86_64",
                  "product_id": "go1.17-race-1.17.7-1.20.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Real Time 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Real Time 15 SP2",
                  "product_id": "SUSE Linux Enterprise Real Time 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_rt:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy 4.1",
                "product": {
                  "name": "SUSE Manager Proxy 4.1",
                  "product_id": "SUSE Manager Proxy 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Retail Branch Server 4.1",
                "product": {
                  "name": "SUSE Manager Retail Branch Server 4.1",
                  "product_id": "SUSE Manager Retail Branch Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server 4.1",
                "product": {
                  "name": "SUSE Manager Server 4.1",
                  "product_id": "SUSE Manager Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7",
                "product": {
                  "name": "SUSE Enterprise Storage 7",
                  "product_id": "SUSE Enterprise Storage 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-1.17.7-1.20.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-doc-1.17.7-1.20.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-doc-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.17-race-1.17.7-1.20.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64"
        },
        "product_reference": "go1.17-race-1.17.7-1.20.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23772"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23772",
          "url": "https://www.suse.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195835 for CVE-2022-23772",
          "url": "https://bugzilla.suse.com/1195835"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:32:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23773"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23773",
          "url": "https://www.suse.com/security/cve/CVE-2022-23773"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195834 for CVE-2022-23773",
          "url": "https://bugzilla.suse.com/1195834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:32:36Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23806"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
          "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
          "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23806",
          "url": "https://www.suse.com/security/cve/CVE-2022-23806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195838 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1195838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206559 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1206559"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208723 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1208723"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Enterprise Storage 7:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.ppc64le",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.s390x",
            "SUSE Manager Server 4.1:go1.17-doc-1.17.7-1.20.1.x86_64",
            "SUSE Manager Server 4.1:go1.17-race-1.17.7-1.20.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:32:36Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-23806"
    }
  ]
}

SUSE-SU-2022:0724-1

Vulnerability from csaf_suse - Published: 2022-03-04 09:34 - Updated: 2022-03-04 09:34

Summary

Security update for go1.16

Severity

Important

Notes

Title of the patch: Security update for go1.16

Description of the patch: This update for go1.16 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838). - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835). - CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834). The following non-security bugs were fixed: - go#50977 crypto/elliptic: IsOnCurve returns true for invalid field elements - go#50700 math/big: Rat.SetString may consume large amount of RAM and crash - go#50686 cmd/go: do not treat branches with semantic-version names as releases - go#50866 cmd/compile: incorrect use of CMN on arm64 - go#50832 runtime/race: NoRaceMutexPureHappensBefore failures - go#50811 cmd/go: remove bitbucket VCS probing - go#50780 runtime: incorrect frame information in traceback traversal may hang the process. - go#50721 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error - go#50682 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg - go#50645 testing: surprising interaction of subtests with TempDir - go#50585 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch - go#50245 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of 'plugin' Package

Patchnames: SUSE-2022-724,SUSE-SLE-Module-Development-Tools-15-SP3-2022-724,SUSE-SLE-Module-Development-Tools-15-SP4-2022-724,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-724,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-724,SUSE-SLE-Product-RT-15-SP2-2022-724,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-724,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-724,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-724,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-724,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-724,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-724,SUSE-Storage-7-2022-724

CVE-2022-23772

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix

Threats

Impact important

CVE-2022-23773

5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix

Threats

Impact moderate

CVE-2022-23806

7.5 (High)


                        
                          CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Affected products

Recommended 62 products

Product	Version	Remediation
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64	—	Vendor Fix
Unresolved product id: SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64	—	Vendor Fix

Threats

Impact important

References

19 references

URL	Category
https://www.suse.com/support/security/rating/	external
https://ftp.suse.com/pub/projects/security/csaf/s…	self
https://www.suse.com/support/update/announcement/…	self
https://lists.suse.com/pipermail/sle-security-upd…	self
https://bugzilla.suse.com/1182345	self
https://bugzilla.suse.com/1195834	self
https://bugzilla.suse.com/1195835	self
https://bugzilla.suse.com/1195838	self
https://www.suse.com/security/cve/CVE-2022-23772/	self
https://www.suse.com/security/cve/CVE-2022-23773/	self
https://www.suse.com/security/cve/CVE-2022-23806/	self
https://www.suse.com/security/cve/CVE-2022-23772	external
https://bugzilla.suse.com/1195835	external
https://www.suse.com/security/cve/CVE-2022-23773	external
https://bugzilla.suse.com/1195834	external
https://www.suse.com/security/cve/CVE-2022-23806	external
https://bugzilla.suse.com/1195838	external
https://bugzilla.suse.com/1206559	external
https://bugzilla.suse.com/1208723	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Security update for go1.16",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "This update for go1.16 fixes the following issues:\n\n- CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve (bsc#1195838).\n- CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption (bsc#1195835).\n- CVE-2022-23773: Fixed incorrect access control in cmd/go (bsc#1195834).\n\nThe following non-security bugs were fixed:\n\n- go#50977 crypto/elliptic: IsOnCurve returns true for invalid field elements\n- go#50700 math/big: Rat.SetString may consume large amount of RAM and crash\n- go#50686 cmd/go: do not treat branches with semantic-version names as releases\n- go#50866 cmd/compile: incorrect use of CMN on arm64\n- go#50832 runtime/race: NoRaceMutexPureHappensBefore failures\n- go#50811 cmd/go: remove bitbucket VCS probing\n- go#50780 runtime: incorrect frame information in traceback traversal may hang the process.\n- go#50721 debug/pe: reading debug_info section of PE files that use the DWARF5 form DW_FORM_line_strp causes error\n- go#50682 cmd/compile: MOVWreg missing sign-extension following a Copy from a floating-point LoadReg\n- go#50645 testing: surprising interaction of subtests with TempDir\n- go#50585 net/http/httptest: add fipsonly compliant certificate in for NewTLSServer(), for dev.boringcrypto branch\n- go#50245 runtime: intermittent os/exec.Command.Start() Hang on Darwin in Presence of \u0027plugin\u0027 Package\n",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "SUSE-2022-724,SUSE-SLE-Module-Development-Tools-15-SP3-2022-724,SUSE-SLE-Module-Development-Tools-15-SP4-2022-724,SUSE-SLE-Product-HPC-15-SP2-ESPOS-2022-724,SUSE-SLE-Product-HPC-15-SP2-LTSS-2022-724,SUSE-SLE-Product-RT-15-SP2-2022-724,SUSE-SLE-Product-SLES-15-SP2-BCL-2022-724,SUSE-SLE-Product-SLES-15-SP2-LTSS-2022-724,SUSE-SLE-Product-SLES_SAP-15-SP2-2022-724,SUSE-SLE-Product-SUSE-Manager-Proxy-4.1-2022-724,SUSE-SLE-Product-SUSE-Manager-Retail-Branch-Server-4.1-2022-724,SUSE-SLE-Product-SUSE-Manager-Server-4.1-2022-724,SUSE-Storage-7-2022-724",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_0724-1.json"
      },
      {
        "category": "self",
        "summary": "URL for SUSE-SU-2022:0724-1",
        "url": "https://www.suse.com/support/update/announcement/2022/suse-su-20220724-1/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for SUSE-SU-2022:0724-1",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2022-March/010358.html"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1182345",
        "url": "https://bugzilla.suse.com/1182345"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195834",
        "url": "https://bugzilla.suse.com/1195834"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195835",
        "url": "https://bugzilla.suse.com/1195835"
      },
      {
        "category": "self",
        "summary": "SUSE Bug 1195838",
        "url": "https://bugzilla.suse.com/1195838"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23772 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23772/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23773 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23773/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-23806 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-23806/"
      }
    ],
    "title": "Security update for go1.16",
    "tracking": {
      "current_release_date": "2022-03-04T09:34:50Z",
      "generator": {
        "date": "2022-03-04T09:34:50Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "SUSE-SU-2022:0724-1",
      "initial_release_date": "2022-03-04T09:34:50Z",
      "revision_history": [
        {
          "date": "2022-03-04T09:34:50Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.16-1.16.14-1.43.1.aarch64",
                "product": {
                  "name": "go1.16-1.16.14-1.43.1.aarch64",
                  "product_id": "go1.16-1.16.14-1.43.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-doc-1.16.14-1.43.1.aarch64",
                "product": {
                  "name": "go1.16-doc-1.16.14-1.43.1.aarch64",
                  "product_id": "go1.16-doc-1.16.14-1.43.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-race-1.16.14-1.43.1.aarch64",
                "product": {
                  "name": "go1.16-race-1.16.14-1.43.1.aarch64",
                  "product_id": "go1.16-race-1.16.14-1.43.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.16-1.16.14-1.43.1.i586",
                "product": {
                  "name": "go1.16-1.16.14-1.43.1.i586",
                  "product_id": "go1.16-1.16.14-1.43.1.i586"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-doc-1.16.14-1.43.1.i586",
                "product": {
                  "name": "go1.16-doc-1.16.14-1.43.1.i586",
                  "product_id": "go1.16-doc-1.16.14-1.43.1.i586"
                }
              }
            ],
            "category": "architecture",
            "name": "i586"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.16-1.16.14-1.43.1.ppc64le",
                "product": {
                  "name": "go1.16-1.16.14-1.43.1.ppc64le",
                  "product_id": "go1.16-1.16.14-1.43.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-doc-1.16.14-1.43.1.ppc64le",
                "product": {
                  "name": "go1.16-doc-1.16.14-1.43.1.ppc64le",
                  "product_id": "go1.16-doc-1.16.14-1.43.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.16-1.16.14-1.43.1.s390x",
                "product": {
                  "name": "go1.16-1.16.14-1.43.1.s390x",
                  "product_id": "go1.16-1.16.14-1.43.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-doc-1.16.14-1.43.1.s390x",
                "product": {
                  "name": "go1.16-doc-1.16.14-1.43.1.s390x",
                  "product_id": "go1.16-doc-1.16.14-1.43.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "go1.16-1.16.14-1.43.1.x86_64",
                "product": {
                  "name": "go1.16-1.16.14-1.43.1.x86_64",
                  "product_id": "go1.16-1.16.14-1.43.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-doc-1.16.14-1.43.1.x86_64",
                "product": {
                  "name": "go1.16-doc-1.16.14-1.43.1.x86_64",
                  "product_id": "go1.16-doc-1.16.14-1.43.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "go1.16-race-1.16.14-1.43.1.x86_64",
                "product": {
                  "name": "go1.16-race-1.16.14-1.43.1.x86_64",
                  "product_id": "go1.16-race-1.16.14-1.43.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                "product": {
                  "name": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                  "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle-module-development-tools:15:sp3"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-espos:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_hpc-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Real Time 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Real Time 15 SP2",
                  "product_id": "SUSE Linux Enterprise Real Time 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sle_rt:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_bcl:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                "product": {
                  "name": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles-ltss:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                "product": {
                  "name": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:sles_sap:15:sp2"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Proxy 4.1",
                "product": {
                  "name": "SUSE Manager Proxy 4.1",
                  "product_id": "SUSE Manager Proxy 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-proxy:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Retail Branch Server 4.1",
                "product": {
                  "name": "SUSE Manager Retail Branch Server 4.1",
                  "product_id": "SUSE Manager Retail Branch Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-retail-branch-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Manager Server 4.1",
                "product": {
                  "name": "SUSE Manager Server 4.1",
                  "product_id": "SUSE Manager Server 4.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:suse-manager-server:4.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "SUSE Enterprise Storage 7",
                "product": {
                  "name": "SUSE Enterprise Storage 7",
                  "product_id": "SUSE Enterprise Storage 7",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:suse:ses:7"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.s390x as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Module for Development Tools 15 SP3",
          "product_id": "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Module for Development Tools 15 SP3"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Real Time 15 SP2",
          "product_id": "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Real Time 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-BCL",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-BCL"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.s390x as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.aarch64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server 15 SP2-LTSS",
          "product_id": "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server 15 SP2-LTSS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.ppc64le as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 15 SP2",
          "product_id": "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 15 SP2"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Manager Proxy 4.1",
          "product_id": "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Proxy 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Manager Retail Branch Server 4.1",
          "product_id": "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Retail Branch Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.ppc64le as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.ppc64le",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.s390x as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.s390x",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Manager Server 4.1",
          "product_id": "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Manager Server 4.1"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-1.16.14-1.43.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-doc-1.16.14-1.43.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-doc-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.aarch64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.aarch64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "go1.16-race-1.16.14-1.43.1.x86_64 as component of SUSE Enterprise Storage 7",
          "product_id": "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64"
        },
        "product_reference": "go1.16-race-1.16.14-1.43.1.x86_64",
        "relates_to_product_reference": "SUSE Enterprise Storage 7"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23772"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Rat.SetString in math/big in Go before 1.16.14 and 1.17.x before 1.17.7 has an overflow that can lead to Uncontrolled Memory Consumption.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23772",
          "url": "https://www.suse.com/security/cve/CVE-2022-23772"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195835 for CVE-2022-23772",
          "url": "https://bugzilla.suse.com/1195835"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:34:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23773"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "cmd/go in Go before 1.16.14 and 1.17.x before 1.17.7 can misinterpret branch names that falsely appear to be version tags. This can lead to incorrect access control if an actor is supposed to be able to create branches but not tags.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23773",
          "url": "https://www.suse.com/security/cve/CVE-2022-23773"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195834 for CVE-2022-23773",
          "url": "https://bugzilla.suse.com/1195834"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:N",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:34:50Z",
          "details": "moderate"
        }
      ],
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-23806"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "Curve.IsOnCurve in crypto/elliptic in Go before 1.16.14 and 1.17.x before 1.17.7 can incorrectly return true in situations with a big.Int value that is not a valid field element.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
          "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
          "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
          "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-23806",
          "url": "https://www.suse.com/security/cve/CVE-2022-23806"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1195838 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1195838"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206559 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1206559"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1208723 for CVE-2022-23806",
          "url": "https://bugzilla.suse.com/1208723"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Enterprise Storage 7:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Module for Development Tools 15 SP3:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Real Time 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-BCL:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.aarch64",
            "SUSE Linux Enterprise Server 15 SP2-LTSS:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Linux Enterprise Server for SAP Applications 15 SP2:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Proxy 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Retail Branch Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.ppc64le",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.s390x",
            "SUSE Manager Server 4.1:go1.16-doc-1.16.14-1.43.1.x86_64",
            "SUSE Manager Server 4.1:go1.16-race-1.16.14-1.43.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2022-03-04T09:34:50Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-23806"
    }
  ]
}

WID-SEC-W-2022-0023

Vulnerability from csaf_certbund - Published: 2022-06-01 22:00 - Updated: 2024-08-28 22:00

Summary

Red Hat OpenShift: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuführen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Linux

CVE-2022-23772

Es existiert eine Schwachstelle in Red Hat OpenShift. In "Rat.SetString" in "math/big" in Go besteht ein Pufferüberlauf, der zu unkontrolliertem Speicherverbrauch führen kann. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service zu verursachen.

Affected products

Known affected 6 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Red Hat OpenShift Serverless Client kn <1.22.1 Red Hat / OpenShift		Serverless Client kn <1.22.1

CVE-2022-23773

Es existiert eine Schwachstelle in Red Hat OpenShift. In "cmd/go" in Go werden unter Umständen Zweignamen falsch interpretiert, die fälschlicherweise als Versions-Tags erscheinen. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um die Zugriffskontrolle zu umgehen.

Affected products

Known affected 6 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Red Hat OpenShift Serverless Client kn <1.22.1 Red Hat / OpenShift		Serverless Client kn <1.22.1

CVE-2022-23806

Es existiert eine Schwachstelle in Red Hat OpenShift. Die Funktion "IsOnCurve", im elliptischen Paket der Crypto-Bibliothek in Golang, gibt unter bestimmten UImständen für ungültige Feldelemente "true" zurück. Ein entfernter anonymer Angreifer kann dieses undefinierte Verhalten auszunutzen und die Verfügbarkeit und Integrität der Ressource zu beeinträchtigen.

Affected products

Known affected 6 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Amazon Linux 2 Amazon	`cpe:/o:amazon:linux_2:-`	—
Gentoo Linux Gentoo	`cpe:/o:gentoo:linux:-`	—
Red Hat OpenShift Serverless Client kn <1.22.1 Red Hat / OpenShift		Serverless Client kn <1.22.1

References

16 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2022:4860	external
https://access.redhat.com/errata/RHSA-2022:4956	external
https://access.redhat.com/errata/RHSA-2022:5201	external
https://access.redhat.com/errata/RHSA-2022:5392	external
https://access.redhat.com/errata/RHSA-2022:5004	external
https://alas.aws.amazon.com/AL2/ALAS-2022-1830.html	external
https://access.redhat.com/errata/RHSA-2022:5875	external
https://security.gentoo.org/glsa/202208-02	external
https://access.redhat.com/errata/RHSA-2022:5068	external
https://access.redhat.com/errata/RHSA-2022:6094	external
https://access.redhat.com/errata/RHSA-2022:6156	external
https://access.redhat.com/errata/RHSA-2022:6155	external
https://access.redhat.com/errata/RHSA-2023:3915	external
https://access.redhat.com/errata/RHSA-2024:5754	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-0023 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0023.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-0023 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0023"
      },
      {
        "category": "external",
        "summary": "RedHat Security Advisory vom 2022-06-01",
        "url": "https://access.redhat.com/errata/RHSA-2022:4860"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:4956 vom 2022-06-09",
        "url": "https://access.redhat.com/errata/RHSA-2022:4956"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:5201 vom 2022-06-28",
        "url": "https://access.redhat.com/errata/RHSA-2022:5201"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:5392 vom 2022-06-28",
        "url": "https://access.redhat.com/errata/RHSA-2022:5392"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:5004 vom 2022-07-04",
        "url": "https://access.redhat.com/errata/RHSA-2022:5004"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2022-1830 vom 2022-08-08",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2022-1830.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:5875 vom 2022-08-09",
        "url": "https://access.redhat.com/errata/RHSA-2022:5875"
      },
      {
        "category": "external",
        "summary": "Gentoo Linux Security Advisory GLSA-202208-02 vom 2022-08-09",
        "url": "https://security.gentoo.org/glsa/202208-02"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:5068 vom 2022-08-10",
        "url": "https://access.redhat.com/errata/RHSA-2022:5068"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6094 vom 2022-08-24",
        "url": "https://access.redhat.com/errata/RHSA-2022:6094"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6156 vom 2022-08-24",
        "url": "https://access.redhat.com/errata/RHSA-2022:6156"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2022:6155 vom 2022-08-24",
        "url": "https://access.redhat.com/errata/RHSA-2022:6155"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3915 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3915"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5754 vom 2024-08-29",
        "url": "https://access.redhat.com/errata/RHSA-2024:5754"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-08-28T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-29T08:11:20.128+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.6"
        }
      },
      "id": "WID-SEC-W-2022-0023",
      "initial_release_date": "2022-06-01T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-06-01T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2022-06-08T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-06-27T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-06-28T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-07-03T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-08-08T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Amazon und Red Hat aufgenommen"
        },
        {
          "date": "2022-08-09T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Gentoo aufgenommen"
        },
        {
          "date": "2022-08-10T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-08-23T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2022-08-24T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-05T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-28T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "12"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Gentoo Linux",
            "product": {
              "name": "Gentoo Linux",
              "product_id": "T012167",
              "product_identification_helper": {
                "cpe": "cpe:/o:gentoo:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Gentoo"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Serverless Client kn \u003c1.22.1",
                "product": {
                  "name": "Red Hat OpenShift Serverless Client kn \u003c1.22.1",
                  "product_id": "T023382"
                }
              },
              {
                "category": "product_version",
                "name": "Serverless Client kn 1.22.1",
                "product": {
                  "name": "Red Hat OpenShift Serverless Client kn 1.22.1",
                  "product_id": "T023382-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:serverless_client_kn_1.22.1"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.11.44",
                  "product_id": "T028416"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11.44",
                  "product_id": "T028416-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.11.44"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.15.29",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.15.29",
                  "product_id": "T037140"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.15.29",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.15.29",
                  "product_id": "T037140-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.15.29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-23772",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat OpenShift. In \"Rat.SetString\" in \"math/big\" in Go besteht ein Puffer\u00fcberlauf, der zu unkontrolliertem Speicherverbrauch f\u00fchren kann. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um einen Denial of Service zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037140",
          "67646",
          "T028416",
          "398363",
          "T012167",
          "T023382"
        ]
      },
      "release_date": "2022-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat OpenShift. In \"cmd/go\" in Go werden unter Umst\u00e4nden Zweignamen falsch interpretiert, die f\u00e4lschlicherweise als Versions-Tags erscheinen. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um die Zugriffskontrolle zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037140",
          "67646",
          "T028416",
          "398363",
          "T012167",
          "T023382"
        ]
      },
      "release_date": "2022-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Red Hat OpenShift. Die Funktion \"IsOnCurve\", im elliptischen Paket der Crypto-Bibliothek in Golang, gibt unter bestimmten UImst\u00e4nden f\u00fcr ung\u00fcltige Feldelemente \"true\" zur\u00fcck. Ein entfernter anonymer Angreifer kann dieses undefinierte Verhalten auszunutzen und die Verf\u00fcgbarkeit und Integrit\u00e4t der Ressource zu beeintr\u00e4chtigen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T037140",
          "67646",
          "T028416",
          "398363",
          "T012167",
          "T023382"
        ]
      },
      "release_date": "2022-06-01T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    }
  ]
}

WID-SEC-W-2022-1335

Vulnerability from csaf_certbund - Published: 2022-09-07 22:00 - Updated: 2025-10-06 22:00

Summary

Xerox FreeFlow Print Server: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität des Systems zu gefährden.

Betroffene Betriebssysteme: - Sonstiges

CVE-2018-25032

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2019-19906

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2020-0499

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2020-25717

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2020-29651

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-0561

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-21708

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-22946

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-25220

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-29923

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30809

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30818

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30823

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30836

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30884

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30887

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30888

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30889

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30890

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30897

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30934

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30936

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30951

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30952

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30953

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30954

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-30984

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-3448

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-34558

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-36221

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4115

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4136

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4166

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4173

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-41771

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-41772

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4187

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4192

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4193

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-4217

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-43519

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-43566

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-44142

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-45444

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-45481

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-45482

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-45483

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-45960

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2021-46143

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0128

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0156

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0158

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0261

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0318

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0319

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0336

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0391

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0408

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0413

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0417

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0443

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0554

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0566

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0572

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0629

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0685

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0696

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0714

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0729

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-0778

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1097

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1196

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1197

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1271

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1520

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-1834

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21245

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21270

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21291

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21303

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21304

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21344

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21349

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21367

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21426

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21434

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21443

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21449

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21476

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21493

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21494

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21496

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21514

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21524

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21533

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21712

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-21716

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22589

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22590

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22592

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22620

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22719

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22720

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22721

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22818

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22822

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22823

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22824

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22825

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22826

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-22827

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23308

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23772

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23773

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23806

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23833

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23852

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23943

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-23990

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-24130

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-24407

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-24675

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-24713

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-24801

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25235

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25236

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25313

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25314

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25315

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-25762

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26381

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26383

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26384

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26386

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26387

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26485

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-26486

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28281

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28282

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28285

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28286

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28289

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28327

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28346

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-28347

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29824

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29909

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29911

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29912

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29913

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29914

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29916

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-29917

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31736

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31737

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31738

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31739

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-3174

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31740

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31741

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31742

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-31747

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

CVE-2022-4187

Affected products

Known affected 3 products

Product	Identifier	Version
Xerox FreeFlow Print Server 7 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:7`	7
Xerox FreeFlow Print Server v9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:v9`	v9
Xerox FreeFlow Print Server 9 Xerox / FreeFlow Print Server	`cpe:/a:xerox:freeflow_print_server:9`	9

References

6 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://securitydocs.business.xerox.com/wp-conten…	external
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external
https://security.business.xerox.com/wp-content/up…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "FreeFlow-Druckserver ist eine Druckserveranwendung f\u00fcr Xerox-Produktionsdrucker, die Flexibilit\u00e4t, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verf\u00fcgbarkeit und Integrit\u00e4t des Systems zu gef\u00e4hrden.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1335 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1335.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1335 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1335"
      },
      {
        "category": "external",
        "summary": "Xerox Security Bulletin XRX22-021 vom 2022-09-07",
        "url": "https://securitydocs.business.xerox.com/wp-content/uploads/2022/09/Xerox-Security-Bulletin-XRX22-021-FreeFlow-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-005 vom 2023-04-04",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX23-007 vom 2023-05-18",
        "url": "https://security.business.xerox.com/wp-content/uploads/2023/05/Xerox-Security-Bulletin-XRX23-007-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v7.pdf"
      },
      {
        "category": "external",
        "summary": "XEROX Security Advisory XRX25-017 vom 2025-10-07",
        "url": "https://security.business.xerox.com/wp-content/uploads/2025/10/Xerox-Security-Bulletin-XRX25-017-for-Xerox-FreeFlow-Print-Server-v9.pdf"
      }
    ],
    "source_lang": "en-US",
    "title": "Xerox FreeFlow Print Server: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2025-10-06T22:00:00.000+00:00",
      "generator": {
        "date": "2025-10-07T08:04:35.259+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2022-1335",
      "initial_release_date": "2022-09-07T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-09-07T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-04-03T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2023-05-18T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von XEROX aufgenommen"
        },
        {
          "date": "2025-10-06T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von XEROX aufgenommen"
        }
      ],
      "status": "final",
      "version": "4"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "7",
                "product": {
                  "name": "Xerox FreeFlow Print Server 7",
                  "product_id": "T000872",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:7"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9",
                "product": {
                  "name": "Xerox FreeFlow Print Server 9",
                  "product_id": "T002977",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:9"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "v9",
                "product": {
                  "name": "Xerox FreeFlow Print Server v9",
                  "product_id": "T015632",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:xerox:freeflow_print_server:v9"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "FreeFlow Print Server"
          }
        ],
        "category": "vendor",
        "name": "Xerox"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-25032",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2019-19906",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2019-19906"
    },
    {
      "cve": "CVE-2020-0499",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2020-0499"
    },
    {
      "cve": "CVE-2020-25717",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2020-25717"
    },
    {
      "cve": "CVE-2020-29651",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2020-29651"
    },
    {
      "cve": "CVE-2021-0561",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-0561"
    },
    {
      "cve": "CVE-2021-21708",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-21708"
    },
    {
      "cve": "CVE-2021-22946",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-22946"
    },
    {
      "cve": "CVE-2021-25220",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-25220"
    },
    {
      "cve": "CVE-2021-29923",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-29923"
    },
    {
      "cve": "CVE-2021-30809",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30809"
    },
    {
      "cve": "CVE-2021-30818",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30818"
    },
    {
      "cve": "CVE-2021-30823",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30823"
    },
    {
      "cve": "CVE-2021-30836",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30836"
    },
    {
      "cve": "CVE-2021-30884",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30884"
    },
    {
      "cve": "CVE-2021-30887",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30887"
    },
    {
      "cve": "CVE-2021-30888",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30888"
    },
    {
      "cve": "CVE-2021-30889",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30889"
    },
    {
      "cve": "CVE-2021-30890",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30890"
    },
    {
      "cve": "CVE-2021-30897",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30897"
    },
    {
      "cve": "CVE-2021-30934",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30934"
    },
    {
      "cve": "CVE-2021-30936",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30936"
    },
    {
      "cve": "CVE-2021-30951",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30951"
    },
    {
      "cve": "CVE-2021-30952",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30952"
    },
    {
      "cve": "CVE-2021-30953",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30953"
    },
    {
      "cve": "CVE-2021-30954",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30954"
    },
    {
      "cve": "CVE-2021-30984",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-30984"
    },
    {
      "cve": "CVE-2021-3448",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-3448"
    },
    {
      "cve": "CVE-2021-34558",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-34558"
    },
    {
      "cve": "CVE-2021-36221",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-36221"
    },
    {
      "cve": "CVE-2021-4115",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4115"
    },
    {
      "cve": "CVE-2021-4136",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4136"
    },
    {
      "cve": "CVE-2021-4166",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4166"
    },
    {
      "cve": "CVE-2021-4173",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4173"
    },
    {
      "cve": "CVE-2021-41771",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-41771"
    },
    {
      "cve": "CVE-2021-41772",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-41772"
    },
    {
      "cve": "CVE-2021-4187",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4187"
    },
    {
      "cve": "CVE-2021-4192",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4192"
    },
    {
      "cve": "CVE-2021-4193",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4193"
    },
    {
      "cve": "CVE-2021-4217",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-4217"
    },
    {
      "cve": "CVE-2021-43519",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-43519"
    },
    {
      "cve": "CVE-2021-43566",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-43566"
    },
    {
      "cve": "CVE-2021-44142",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-44142"
    },
    {
      "cve": "CVE-2021-45444",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-45444"
    },
    {
      "cve": "CVE-2021-45481",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-45481"
    },
    {
      "cve": "CVE-2021-45482",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-45482"
    },
    {
      "cve": "CVE-2021-45483",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-45483"
    },
    {
      "cve": "CVE-2021-45960",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-45960"
    },
    {
      "cve": "CVE-2021-46143",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2021-46143"
    },
    {
      "cve": "CVE-2022-0128",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0128"
    },
    {
      "cve": "CVE-2022-0156",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0156"
    },
    {
      "cve": "CVE-2022-0158",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0158"
    },
    {
      "cve": "CVE-2022-0261",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0261"
    },
    {
      "cve": "CVE-2022-0318",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0318"
    },
    {
      "cve": "CVE-2022-0319",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0319"
    },
    {
      "cve": "CVE-2022-0336",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0336"
    },
    {
      "cve": "CVE-2022-0391",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0391"
    },
    {
      "cve": "CVE-2022-0408",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0408"
    },
    {
      "cve": "CVE-2022-0413",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0413"
    },
    {
      "cve": "CVE-2022-0417",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0417"
    },
    {
      "cve": "CVE-2022-0443",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0443"
    },
    {
      "cve": "CVE-2022-0554",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0554"
    },
    {
      "cve": "CVE-2022-0566",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0566"
    },
    {
      "cve": "CVE-2022-0572",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0572"
    },
    {
      "cve": "CVE-2022-0629",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0629"
    },
    {
      "cve": "CVE-2022-0685",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0685"
    },
    {
      "cve": "CVE-2022-0696",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0696"
    },
    {
      "cve": "CVE-2022-0714",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0714"
    },
    {
      "cve": "CVE-2022-0729",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0729"
    },
    {
      "cve": "CVE-2022-0778",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-0778"
    },
    {
      "cve": "CVE-2022-1097",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1097"
    },
    {
      "cve": "CVE-2022-1196",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1196"
    },
    {
      "cve": "CVE-2022-1197",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1197"
    },
    {
      "cve": "CVE-2022-1271",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1271"
    },
    {
      "cve": "CVE-2022-1520",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1520"
    },
    {
      "cve": "CVE-2022-1834",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-1834"
    },
    {
      "cve": "CVE-2022-21245",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21245"
    },
    {
      "cve": "CVE-2022-21270",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21270"
    },
    {
      "cve": "CVE-2022-21291",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21291"
    },
    {
      "cve": "CVE-2022-21303",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21303"
    },
    {
      "cve": "CVE-2022-21304",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21304"
    },
    {
      "cve": "CVE-2022-21344",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21344"
    },
    {
      "cve": "CVE-2022-21349",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21349"
    },
    {
      "cve": "CVE-2022-21367",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21367"
    },
    {
      "cve": "CVE-2022-21426",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21426"
    },
    {
      "cve": "CVE-2022-21434",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21434"
    },
    {
      "cve": "CVE-2022-21443",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21443"
    },
    {
      "cve": "CVE-2022-21449",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21449"
    },
    {
      "cve": "CVE-2022-21476",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21476"
    },
    {
      "cve": "CVE-2022-21493",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21493"
    },
    {
      "cve": "CVE-2022-21494",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21494"
    },
    {
      "cve": "CVE-2022-21496",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21496"
    },
    {
      "cve": "CVE-2022-21514",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21514"
    },
    {
      "cve": "CVE-2022-21524",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21524"
    },
    {
      "cve": "CVE-2022-21533",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21533"
    },
    {
      "cve": "CVE-2022-21712",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21712"
    },
    {
      "cve": "CVE-2022-21716",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-21716"
    },
    {
      "cve": "CVE-2022-22589",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22589"
    },
    {
      "cve": "CVE-2022-22590",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22590"
    },
    {
      "cve": "CVE-2022-22592",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22592"
    },
    {
      "cve": "CVE-2022-22620",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22620"
    },
    {
      "cve": "CVE-2022-22719",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22719"
    },
    {
      "cve": "CVE-2022-22720",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22720"
    },
    {
      "cve": "CVE-2022-22721",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22721"
    },
    {
      "cve": "CVE-2022-22818",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22818"
    },
    {
      "cve": "CVE-2022-22822",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22822"
    },
    {
      "cve": "CVE-2022-22823",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22823"
    },
    {
      "cve": "CVE-2022-22824",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22824"
    },
    {
      "cve": "CVE-2022-22825",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22825"
    },
    {
      "cve": "CVE-2022-22826",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22826"
    },
    {
      "cve": "CVE-2022-22827",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-22827"
    },
    {
      "cve": "CVE-2022-23308",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23308"
    },
    {
      "cve": "CVE-2022-23772",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-23833",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23833"
    },
    {
      "cve": "CVE-2022-23852",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23852"
    },
    {
      "cve": "CVE-2022-23943",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23943"
    },
    {
      "cve": "CVE-2022-23990",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-23990"
    },
    {
      "cve": "CVE-2022-24130",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-24130"
    },
    {
      "cve": "CVE-2022-24407",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-24407"
    },
    {
      "cve": "CVE-2022-24675",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-24675"
    },
    {
      "cve": "CVE-2022-24713",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-24713"
    },
    {
      "cve": "CVE-2022-24801",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-24801"
    },
    {
      "cve": "CVE-2022-25235",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25235"
    },
    {
      "cve": "CVE-2022-25236",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25236"
    },
    {
      "cve": "CVE-2022-25313",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25313"
    },
    {
      "cve": "CVE-2022-25314",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25314"
    },
    {
      "cve": "CVE-2022-25315",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25315"
    },
    {
      "cve": "CVE-2022-25762",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-25762"
    },
    {
      "cve": "CVE-2022-26381",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26381"
    },
    {
      "cve": "CVE-2022-26383",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26383"
    },
    {
      "cve": "CVE-2022-26384",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26384"
    },
    {
      "cve": "CVE-2022-26386",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26386"
    },
    {
      "cve": "CVE-2022-26387",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26387"
    },
    {
      "cve": "CVE-2022-26485",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26485"
    },
    {
      "cve": "CVE-2022-26486",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-26486"
    },
    {
      "cve": "CVE-2022-28281",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28281"
    },
    {
      "cve": "CVE-2022-28282",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28282"
    },
    {
      "cve": "CVE-2022-28285",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28285"
    },
    {
      "cve": "CVE-2022-28286",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28286"
    },
    {
      "cve": "CVE-2022-28289",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28289"
    },
    {
      "cve": "CVE-2022-28327",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28327"
    },
    {
      "cve": "CVE-2022-28346",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28346"
    },
    {
      "cve": "CVE-2022-28347",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-28347"
    },
    {
      "cve": "CVE-2022-29824",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29824"
    },
    {
      "cve": "CVE-2022-29909",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29909"
    },
    {
      "cve": "CVE-2022-29911",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29911"
    },
    {
      "cve": "CVE-2022-29912",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29912"
    },
    {
      "cve": "CVE-2022-29913",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29913"
    },
    {
      "cve": "CVE-2022-29914",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29914"
    },
    {
      "cve": "CVE-2022-29916",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29916"
    },
    {
      "cve": "CVE-2022-29917",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-29917"
    },
    {
      "cve": "CVE-2022-31736",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31736"
    },
    {
      "cve": "CVE-2022-31737",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31737"
    },
    {
      "cve": "CVE-2022-31738",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31738"
    },
    {
      "cve": "CVE-2022-31739",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31739"
    },
    {
      "cve": "CVE-2022-3174",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-3174"
    },
    {
      "cve": "CVE-2022-31740",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31740"
    },
    {
      "cve": "CVE-2022-31741",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31741"
    },
    {
      "cve": "CVE-2022-31742",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31742"
    },
    {
      "cve": "CVE-2022-31747",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-31747"
    },
    {
      "cve": "CVE-2022-4187",
      "product_status": {
        "known_affected": [
          "T000872",
          "T015632",
          "T002977"
        ]
      },
      "release_date": "2022-09-07T22:00:00.000+00:00",
      "title": "CVE-2022-4187"
    }
  ]
}

WID-SEC-W-2022-1461

Vulnerability from csaf_certbund - Published: 2022-09-18 22:00 - Updated: 2023-06-20 22:00

Summary

IBM Spectrum Protect: Mehrere Schwachstellen

Severity

Hoch

Notes

Produktbeschreibung: IBM Spectrum Protect ist eine zentralisierte Backuplösung für Systeme im Netzwerk.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM Spectrum Protect ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Linux

CVE-2018-25032

In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zurückzuführen. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuführen, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuführen, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2021-22946

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2021-22947

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2021-3759

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2021-42550

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-1292

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-1705

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-2068

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-2097

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-22389

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-22390

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-22476

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-22576

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-23772

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-23773

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-23806

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-24675

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-27774

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-27776

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-27782

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-29361

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-29526

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-29804

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-30580

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-30629

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-30631

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-30633

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-30634

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-31028

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32212

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32213

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32214

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32215

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32222

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-32223

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-33987

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-35919

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-40234

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

CVE-2022-40608

Affected products

Known affected 1 product

Product	Identifier	Version	Remediation
IBM Spectrum Protect plus 10.1 IBM / Spectrum Protect	`cpe:/a:ibm:spectrum_protect:plus_10.1`	—

References

12 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.ibm.com/support/pages/node/7005589	external
https://www.ibm.com/support/pages/node/6620211	external
https://www.ibm.com/support/pages/node/6619915	external
https://www.ibm.com/support/pages/node/6621141	external
https://www.ibm.com/support/pages/node/6619963	external
https://www.ibm.com/support/pages/node/6621115	external
https://www.ibm.com/support/pages/node/6619919	external
https://www.ibm.com/support/pages/node/6619947	external
https://www.ibm.com/support/pages/node/6619975	external
https://www.ibm.com/support/pages/node/6620209	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "IBM Spectrum Protect ist eine zentralisierte Backupl\u00f6sung f\u00fcr Systeme im Netzwerk.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in IBM Spectrum Protect ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode mit Administratorrechten auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2022-1461 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-1461.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2022-1461 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-1461"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin 7005589 vom 2023-06-21",
        "url": "https://www.ibm.com/support/pages/node/7005589"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6620211 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6620211"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6619915 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6619915"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6621141 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6621141"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6619963 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6619963"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6621115 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6621115"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6619919 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6619919"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6619947 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6619947"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6619975 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6619975"
      },
      {
        "category": "external",
        "summary": "IBM Security Bulletin: 6620209 vom 2022-09-18",
        "url": "https://www.ibm.com/support/pages/node/6620209"
      }
    ],
    "source_lang": "en-US",
    "title": "IBM Spectrum Protect: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-06-20T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:35:19.173+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2022-1461",
      "initial_release_date": "2022-09-18T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2022-09-18T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-06-20T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von IBM aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "IBM Spectrum Protect plus 10.1",
                "product": {
                  "name": "IBM Spectrum Protect plus 10.1",
                  "product_id": "T015895",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect:plus_10.1"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Spectrum Protect \u003c 10.1.12",
                "product": {
                  "name": "IBM Spectrum Protect \u003c 10.1.12",
                  "product_id": "T024647",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect:10.1.12"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "IBM Spectrum Protect \u003c 8.1.16",
                "product": {
                  "name": "IBM Spectrum Protect \u003c 8.1.16",
                  "product_id": "T024648",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:ibm:spectrum_protect:8.1.16"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Spectrum Protect"
          }
        ],
        "category": "vendor",
        "name": "IBM"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2018-25032",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2018-25032"
    },
    {
      "cve": "CVE-2021-22946",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2021-22946"
    },
    {
      "cve": "CVE-2021-22947",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2021-22947"
    },
    {
      "cve": "CVE-2021-3759",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2021-3759"
    },
    {
      "cve": "CVE-2021-42550",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2021-42550"
    },
    {
      "cve": "CVE-2022-1292",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-1292"
    },
    {
      "cve": "CVE-2022-1705",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-1705"
    },
    {
      "cve": "CVE-2022-2068",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-2068"
    },
    {
      "cve": "CVE-2022-2097",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-2097"
    },
    {
      "cve": "CVE-2022-22389",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-22389"
    },
    {
      "cve": "CVE-2022-22390",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-22390"
    },
    {
      "cve": "CVE-2022-22476",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-22476"
    },
    {
      "cve": "CVE-2022-22576",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-22576"
    },
    {
      "cve": "CVE-2022-23772",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-24675",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-24675"
    },
    {
      "cve": "CVE-2022-27774",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-27774"
    },
    {
      "cve": "CVE-2022-27776",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-27776"
    },
    {
      "cve": "CVE-2022-27782",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-27782"
    },
    {
      "cve": "CVE-2022-29361",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-29361"
    },
    {
      "cve": "CVE-2022-29526",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-29526"
    },
    {
      "cve": "CVE-2022-29804",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-29804"
    },
    {
      "cve": "CVE-2022-30580",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-30580"
    },
    {
      "cve": "CVE-2022-30629",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-30629"
    },
    {
      "cve": "CVE-2022-30631",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-30631"
    },
    {
      "cve": "CVE-2022-30633",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-30633"
    },
    {
      "cve": "CVE-2022-30634",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-30634"
    },
    {
      "cve": "CVE-2022-31028",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-31028"
    },
    {
      "cve": "CVE-2022-32212",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32212"
    },
    {
      "cve": "CVE-2022-32213",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32213"
    },
    {
      "cve": "CVE-2022-32214",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32214"
    },
    {
      "cve": "CVE-2022-32215",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32215"
    },
    {
      "cve": "CVE-2022-32222",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32222"
    },
    {
      "cve": "CVE-2022-32223",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-32223"
    },
    {
      "cve": "CVE-2022-33987",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-33987"
    },
    {
      "cve": "CVE-2022-35919",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-35919"
    },
    {
      "cve": "CVE-2022-40234",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-40234"
    },
    {
      "cve": "CVE-2022-40608",
      "notes": [
        {
          "category": "description",
          "text": "In IBM Spectrum Protect existieren mehrere Schwachstellen. Diese sind auf Fehler in verschiedenen Komponenten sowie im Umgang mit Zertifikaten zur\u00fcckzuf\u00fchren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um seine Privilegien zu erweitern, beliebigen Programmcode (teils mit Administratorrechten) auszuf\u00fchren, Informationen offenzulegen, Dateien zu manipulieren, einen Cross-Site-Scripting-Angriff durchzuf\u00fchren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T015895"
        ]
      },
      "release_date": "2022-09-18T22:00:00.000+00:00",
      "title": "CVE-2022-40608"
    }
  ]
}

WID-SEC-W-2023-0204

Vulnerability from csaf_certbund - Published: 2023-01-25 23:00 - Updated: 2024-08-28 22:00

Summary

Red Hat OpenShift: Mehrere Schwachstellen

Severity

Mittel

Notes

Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.

Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um beliebigen Programmcode auszuführen, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.

Betroffene Betriebssysteme: - Linux

CVE-2021-38561

In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen "Golang" und "kubeVirt". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuführen oder Sicherheitsvorkehrungen zu umgehen.

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2021-44716

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2021-44717

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-1705

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-1798

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-1962

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-23772

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-23773

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-23806

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-28131

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-29526

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30629

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30630

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30631

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30632

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30633

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-30635

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

CVE-2022-32148

Affected products

Known affected 10 products

Product	Identifier	Version
Red Hat OpenShift Container Platform <4.11.43 Red Hat / OpenShift		Container Platform <4.11.43
Red Hat OpenShift Container Platform <4.15.29 Red Hat / OpenShift		Container Platform <4.15.29
Red Hat Enterprise Linux Red Hat	`cpe:/o:redhat:enterprise_linux:-`	—
Red Hat OpenShift Container Platform <4.12.1 Red Hat / OpenShift		Container Platform <4.12.1
Red Hat OpenShift Container Platform <4.11.44 Red Hat / OpenShift		Container Platform <4.11.44
Red Hat OpenShift <4.12.0 Red Hat / OpenShift		<4.12.0
Red Hat OpenShift Container Platform 4.12 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.12`	Container Platform 4.12
Red Hat OpenShift Developer Tools and Services 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:developer_tools_and_services_4.11`	Developer Tools and Services 4.11
Red Hat OpenShift Container Platform 4.11 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.11`	Container Platform 4.11
Red Hat OpenShift Container Platform 4.13 Red Hat / OpenShift	`cpe:/a:redhat:openshift:container_platform_4.13`	Container Platform 4.13

References

25 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://access.redhat.com/errata/RHSA-2023:0408	external
https://access.redhat.com/errata/RHSA-2023:0566	external
https://access.redhat.com/errata/RHSA-2023:0652	external
https://access.redhat.com/errata/RHSA-2023:0769	external
https://access.redhat.com/errata/RHSA-2023:0774	external
https://access.redhat.com/errata/RHSA-2023:0890	external
https://access.redhat.com/errata/RHSA-2023:0895	external
https://access.redhat.com/errata/RHSA-2023:1042	external
https://access.redhat.com/errata/RHSA-2023:1529	external
https://access.redhat.com/errata/RHSA-2023:2367	external
https://access.redhat.com/errata/RHSA-2023:2357	external
https://access.redhat.com/errata/RHSA-2023:2283	external
https://access.redhat.com/errata/RHSA-2023:2282	external
https://access.redhat.com/errata/RHSA-2023:2253	external
https://access.redhat.com/errata/RHSA-2023:1328	external
https://access.redhat.com/errata/RHSA-2023:1326	external
https://access.redhat.com/errata/RHSA-2023:3542	external
https://access.redhat.com/errata/RHSA-2023:3642	external
https://access.redhat.com/errata/RHSA-2023:3664	external
https://access.redhat.com/errata/RHSA-2023:3914	external
https://access.redhat.com/errata/RHSA-2023:3915	external
https://access.redhat.com/errata/RHSA-2023:4488	external
https://access.redhat.com/errata/RHSA-2024:5754	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-0204 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0204.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-0204 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0204"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0408 vom 2023-01-25",
        "url": "https://access.redhat.com/errata/RHSA-2023:0408"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0566 vom 2023-02-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:0566"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0652 vom 2023-02-15",
        "url": "https://access.redhat.com/errata/RHSA-2023:0652"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0769 vom 2023-02-21",
        "url": "https://access.redhat.com/errata/RHSA-2023:0769"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0774 vom 2023-02-22",
        "url": "https://access.redhat.com/errata/RHSA-2023:0774"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0890 vom 2023-02-28",
        "url": "https://access.redhat.com/errata/RHSA-2023:0890"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:0895 vom 2023-02-28",
        "url": "https://access.redhat.com/errata/RHSA-2023:0895"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1042 vom 2023-03-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:1042"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1529 vom 2023-03-30",
        "url": "https://access.redhat.com/errata/RHSA-2023:1529"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2367 vom 2023-05-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:2367"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2357 vom 2023-05-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:2357"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2283 vom 2023-05-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:2283"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2282 vom 2023-05-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:2282"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:2253 vom 2023-05-09",
        "url": "https://access.redhat.com/errata/RHSA-2023:2253"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1328 vom 2023-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:1328"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:1326 vom 2023-05-18",
        "url": "https://access.redhat.com/errata/RHSA-2023:1326"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3542 vom 2023-06-14",
        "url": "https://access.redhat.com/errata/RHSA-2023:3542"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3642 vom 2023-06-15",
        "url": "https://access.redhat.com/errata/RHSA-2023:3642"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3664 vom 2023-06-19",
        "url": "https://access.redhat.com/errata/RHSA-2023:3664"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3914 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3914"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:3915 vom 2023-07-06",
        "url": "https://access.redhat.com/errata/RHSA-2023:3915"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:4488 vom 2023-08-07",
        "url": "https://access.redhat.com/errata/RHSA-2023:4488"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2024:5754 vom 2024-08-29",
        "url": "https://access.redhat.com/errata/RHSA-2024:5754"
      }
    ],
    "source_lang": "en-US",
    "title": "Red Hat OpenShift: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-08-28T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-29T08:11:19.180+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.6"
        }
      },
      "id": "WID-SEC-W-2023-0204",
      "initial_release_date": "2023-01-25T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-01-25T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-02-06T23:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-14T23:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-20T23:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-21T23:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-02-28T23:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-03-06T23:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-03-29T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-05-09T22:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-05-18T22:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-14T22:00:00.000+00:00",
          "number": "11",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-15T22:00:00.000+00:00",
          "number": "12",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-06-19T22:00:00.000+00:00",
          "number": "13",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-07-05T22:00:00.000+00:00",
          "number": "14",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2023-08-06T22:00:00.000+00:00",
          "number": "15",
          "summary": "Neue Updates von Red Hat aufgenommen"
        },
        {
          "date": "2024-08-28T22:00:00.000+00:00",
          "number": "16",
          "summary": "Neue Updates von Red Hat aufgenommen"
        }
      ],
      "status": "final",
      "version": "16"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.12.1",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.12.1",
                  "product_id": "T025202"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12.1",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12.1",
                  "product_id": "T025202-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.11",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11",
                  "product_id": "T025990",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_4.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "\u003c4.12.0",
                "product": {
                  "name": "Red Hat OpenShift \u003c4.12.0",
                  "product_id": "T026026"
                }
              },
              {
                "category": "product_version",
                "name": "4.12.0",
                "product": {
                  "name": "Red Hat OpenShift 4.12.0",
                  "product_id": "T026026-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:4.12.0"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.12",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.12",
                  "product_id": "T026435",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_4.12"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.13",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.13",
                  "product_id": "T027760",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform_4.13"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.11.43",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.11.43",
                  "product_id": "T028132"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.11.43",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11.43",
                  "product_id": "T028132-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.11.43"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Developer Tools and Services 4.11",
                "product": {
                  "name": "Red Hat OpenShift Developer Tools and Services 4.11",
                  "product_id": "T028205",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:developer_tools_and_services_4.11"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.11.44",
                  "product_id": "T028416"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.11.44",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.11.44",
                  "product_id": "T028416-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.11.44"
                  }
                }
              },
              {
                "category": "product_version_range",
                "name": "Container Platform \u003c4.15.29",
                "product": {
                  "name": "Red Hat OpenShift Container Platform \u003c4.15.29",
                  "product_id": "T037140"
                }
              },
              {
                "category": "product_version",
                "name": "Container Platform 4.15.29",
                "product": {
                  "name": "Red Hat OpenShift Container Platform 4.15.29",
                  "product_id": "T037140-fixed",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:openshift:container_platform__4.15.29"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "OpenShift"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-38561",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2021-38561"
    },
    {
      "cve": "CVE-2021-44716",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2021-44716"
    },
    {
      "cve": "CVE-2021-44717",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2021-44717"
    },
    {
      "cve": "CVE-2022-1705",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-1705"
    },
    {
      "cve": "CVE-2022-1798",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-1798"
    },
    {
      "cve": "CVE-2022-1962",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-1962"
    },
    {
      "cve": "CVE-2022-23772",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-23772"
    },
    {
      "cve": "CVE-2022-23773",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-23773"
    },
    {
      "cve": "CVE-2022-23806",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-23806"
    },
    {
      "cve": "CVE-2022-28131",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-28131"
    },
    {
      "cve": "CVE-2022-29526",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-29526"
    },
    {
      "cve": "CVE-2022-30629",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30629"
    },
    {
      "cve": "CVE-2022-30630",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30630"
    },
    {
      "cve": "CVE-2022-30631",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30631"
    },
    {
      "cve": "CVE-2022-30632",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30632"
    },
    {
      "cve": "CVE-2022-30633",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30633"
    },
    {
      "cve": "CVE-2022-30635",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-30635"
    },
    {
      "cve": "CVE-2022-32148",
      "notes": [
        {
          "category": "description",
          "text": "In Red Hat OpenShift existieren mehrere Schwachstellen. Diese bestehen in den Modulen \"Golang\" und \"kubeVirt\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuf\u00fchren, Dateien zu manipulieren, einen Denial of Service Zustand herbeizuf\u00fchren oder Sicherheitsvorkehrungen zu umgehen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T028132",
          "T037140",
          "67646",
          "T025202",
          "T028416",
          "T026026",
          "T026435",
          "T028205",
          "T025990",
          "T027760"
        ]
      },
      "release_date": "2023-01-25T23:00:00.000+00:00",
      "title": "CVE-2022-32148"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-23772 (GCVE-0-2022-23772)

Tags

Sightings

Nomenclature