Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-29406 (GCVE-0-2023-29406)
Vulnerability from cvelistv5 – Published: 2023-07-11 19:23 – Updated: 2025-02-13 16:49
VLAI
EPSS
Title
Insufficient sanitization of Host header in net/http
Summary
The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value.
Severity
No CVSS data available.
SSVC
Exploitation: none
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-113 - Improper Neutralization of CRLF Sequences in HTTP Headers ('HTTP Request/Response Splitting')
Assigner
References
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/http |
Affected:
0 , < 1.19.11
(semver)
Affected: 1.20.0-0 , < 1.20.6 (semver) |
Credits
Bartek Nowotarski
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T14:07:45.735Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/issue/60374"
},
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/cl/506996"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
},
{
"tags": [
"x_transferred"
],
"url": "https://pkg.go.dev/vuln/GO-2023-1878"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20230814-0002/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202311-09"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-29406",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-07T15:39:42.813114Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-07T15:39:53.007Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/http",
"product": "net/http",
"programRoutines": [
{
"name": "Request.write"
},
{
"name": "Client.CloseIdleConnections"
},
{
"name": "Client.Do"
},
{
"name": "Client.Get"
},
{
"name": "Client.Head"
},
{
"name": "Client.Post"
},
{
"name": "Client.PostForm"
},
{
"name": "Get"
},
{
"name": "Head"
},
{
"name": "Post"
},
{
"name": "PostForm"
},
{
"name": "Request.Write"
},
{
"name": "Request.WriteProxy"
},
{
"name": "Transport.CancelRequest"
},
{
"name": "Transport.CloseIdleConnections"
},
{
"name": "Transport.RoundTrip"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.19.11",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.20.6",
"status": "affected",
"version": "1.20.0-0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Bartek Nowotarski"
}
],
"descriptions": [
{
"lang": "en",
"value": "The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-11-25T11:09:28.969Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/issue/60374"
},
{
"url": "https://go.dev/cl/506996"
},
{
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
},
{
"url": "https://pkg.go.dev/vuln/GO-2023-1878"
},
{
"url": "https://security.netapp.com/advisory/ntap-20230814-0002/"
},
{
"url": "https://security.gentoo.org/glsa/202311-09"
}
],
"title": "Insufficient sanitization of Host header in net/http"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2023-29406",
"datePublished": "2023-07-11T19:23:58.511Z",
"dateReserved": "2023-04-05T19:36:35.043Z",
"dateUpdated": "2025-02-13T16:49:14.579Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-29406",
"date": "2026-06-04",
"epss": "0.00344",
"percentile": "0.57249"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-29406\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2023-07-11T20:15:10.643\",\"lastModified\":\"2024-11-21T07:56:59.913\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-436\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.19.11\",\"matchCriteriaId\":\"A12D1C04-755E-4205-8261-3A85D0AE0AB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.20.0\",\"versionEndExcluding\":\"1.20.6\",\"matchCriteriaId\":\"9A77E128-E2EE-4E9A-9C4C-5F812E14EBFA\"}]}]}],\"references\":[{\"url\":\"https://go.dev/cl/506996\",\"source\":\"security@golang.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/60374\",\"source\":\"security@golang.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/2q13H6LEEx0\",\"source\":\"security@golang.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2023-1878\",\"source\":\"security@golang.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"security@golang.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20230814-0002/\",\"source\":\"security@golang.org\"},{\"url\":\"https://go.dev/cl/506996\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://go.dev/issue/60374\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/2q13H6LEEx0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://pkg.go.dev/vuln/GO-2023-1878\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20230814-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://go.dev/issue/60374\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://go.dev/cl/506996\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/2q13H6LEEx0\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2023-1878\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20230814-0002/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T14:07:45.735Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-29406\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-07T15:39:42.813114Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-07T15:39:46.956Z\"}}], \"cna\": {\"title\": \"Insufficient sanitization of Host header in net/http\", \"credits\": [{\"lang\": \"en\", \"value\": \"Bartek Nowotarski\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/http\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.19.11\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.20.0-0\", \"lessThan\": \"1.20.6\", \"versionType\": \"semver\"}], \"packageName\": \"net/http\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Request.write\"}, {\"name\": \"Client.CloseIdleConnections\"}, {\"name\": \"Client.Do\"}, {\"name\": \"Client.Get\"}, {\"name\": \"Client.Head\"}, {\"name\": \"Client.Post\"}, {\"name\": \"Client.PostForm\"}, {\"name\": \"Get\"}, {\"name\": \"Head\"}, {\"name\": \"Post\"}, {\"name\": \"PostForm\"}, {\"name\": \"Request.Write\"}, {\"name\": \"Request.WriteProxy\"}, {\"name\": \"Transport.CancelRequest\"}, {\"name\": \"Transport.CloseIdleConnections\"}, {\"name\": \"Transport.RoundTrip\"}]}], \"references\": [{\"url\": \"https://go.dev/issue/60374\"}, {\"url\": \"https://go.dev/cl/506996\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/2q13H6LEEx0\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2023-1878\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20230814-0002/\"}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The HTTP/1 client does not fully validate the contents of the Host header. A maliciously crafted Host header can inject additional headers or entire requests. With fix, the HTTP/1 client now refuses to send requests containing an invalid Request.Host or Request.URL.Host value.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-113: Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2023-11-25T11:09:28.969Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-29406\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-02-13T16:49:14.579Z\", \"dateReserved\": \"2023-04-05T19:36:35.043Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2023-07-11T19:23:58.511Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
RHSA-2023:6031
Vulnerability from csaf_redhat - Published: 2023-10-23 14:24 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: Cryostat security update
Severity
Important
Notes
Topic: An update is now available for Cryostat 2 on RHEL 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: An update is now available for Cryostat 2 on RHEL 8.
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang.org/x/net/html: Cross site scripting (CVE-2023-3978)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)
* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in the Golang HTML package where it is vulnerable to Cross-site scripting caused by the improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim's web browser within the security context of the hosting website once the URL is clicked. The flaw allows an attacker to steal the victim's cookie-based authentication credentials.
6.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — | ||
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
62 references
Acknowledgments
Martin Seemann
Marten Seemann
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Cryostat 2 on RHEL 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "An update is now available for Cryostat 2 on RHEL 8.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* golang.org/x/net/html: Cross site scripting (CVE-2023-3978)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n\n* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)\n\n* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6031",
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/errata/RHSA-2023:5455",
"url": "https://access.redhat.com/errata/RHSA-2023:5455"
},
{
"category": "external",
"summary": "https://access.redhat.com/containers",
"url": "https://access.redhat.com/containers"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228689"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6031.json"
}
],
"title": "Red Hat Security Advisory: Cryostat security update",
"tracking": {
"current_release_date": "2026-06-05T06:25:19+00:00",
"generator": {
"date": "2026-06-05T06:25:19+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6031",
"initial_release_date": "2023-10-23T14:24:36+00:00",
"revision_history": [
{
"date": "2023-10-23T14:24:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-23T14:24:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:19+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Cryostat 2 on RHEL 8",
"product": {
"name": "Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cryostat:2::el8"
}
}
}
],
"category": "product_family",
"name": "Cryostat"
},
{
"branches": [
{
"category": "product_version",
"name": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"product": {
"name": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"product_id": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/cryostat-grafana-dashboard-rhel8\u0026tag=2.3.1-8"
}
}
},
{
"category": "product_version",
"name": "cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"product": {
"name": "cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"product_id": "cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/cryostat-reports-rhel8\u0026tag=2.3.1-8"
}
}
},
{
"category": "product_version",
"name": "cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"product": {
"name": "cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"product_id": "cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/cryostat-rhel8\u0026tag=2.3.1-8"
}
}
},
{
"category": "product_version",
"name": "cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"product": {
"name": "cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"product_id": "cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/cryostat-operator-bundle\u0026tag=2.3.1-8"
}
}
},
{
"category": "product_version",
"name": "cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"product": {
"name": "cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"product_id": "cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/cryostat-rhel8-operator\u0026tag=2.3.1-11"
}
}
},
{
"category": "product_version",
"name": "cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64",
"product": {
"name": "cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64",
"product_id": "cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29?arch=amd64\u0026repository_url=registry.redhat.io/cryostat-tech-preview/jfr-datasource-rhel8\u0026tag=2.3.1-8"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64"
},
"product_reference": "cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64"
},
"product_reference": "cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64"
},
"product_reference": "cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
},
"product_reference": "cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64"
},
"product_reference": "cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64 as a component of Cryostat 2 on RHEL 8",
"product_id": "8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
},
"product_reference": "cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64",
"relates_to_product_reference": "8Base-Cryostat-2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-3978",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228689"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Golang HTML package where it is vulnerable to Cross-site scripting caused by the improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially crafted URL to execute a script in a victim\u0027s web browser within the security context of the hosting website once the URL is clicked. The flaw allows an attacker to steal the victim\u0027s cookie-based authentication credentials.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/html: Cross site scripting",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-3978"
},
{
"category": "external",
"summary": "RHBZ#2228689",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228689"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-3978",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3978"
},
{
"category": "external",
"summary": "https://go.dev/cl/514896",
"url": "https://go.dev/cl/514896"
},
{
"category": "external",
"summary": "https://go.dev/issue/61615",
"url": "https://go.dev/issue/61615"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1988",
"url": "https://pkg.go.dev/vuln/GO-2023-1988"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/html: Cross site scripting"
},
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"acknowledgments": [
{
"names": [
"Martin Seemann"
]
}
],
"cve": "CVE-2023-39321",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw has been marked as moderate instead of high like NVD \nQUICConn.HandleData buffers data and passes it to handlePostHandshakeMessage every time the buffer contains a complete message, while HandleData doesn\u0027t limit the amount of data it can buffer, a panic or denial of service would likely be lower severity,also in order to exploit this vulnerability, an attacker would have to smuggle partial handshake data which might be rejected altogether as per tls RFC specification.Therfore because of a lower severity denial of service and conditions that are beyond the scope of attackers control,we have marked this as moderate severity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39321"
},
{
"category": "external",
"summary": "RHBZ#2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2044.json",
"url": "https://vuln.go.dev/ID/GO-2023-2044.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections"
},
{
"acknowledgments": [
{
"names": [
"Marten Seemann"
]
}
],
"cve": "CVE-2023-39322",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: lack of a limit on buffered post-handshake",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A vulnerability was found in the Go QUIC protocol implementation in the logic that processes post-handshake messages. It is an uncontrolled resource consumption flaw, triggered when a malicious connection sends data without an enforced upper bound. This leads to unbounded memory growth, causing the service to crash and resulting in a denial of service.The single-dimensional impact of denial of service and the added complexity of whether the resource exhaustion would happen, being out of an attacker\u0027s control,this has been rated as moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39322"
},
{
"category": "external",
"summary": "RHBZ#2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2045.json",
"url": "https://vuln.go.dev/ID/GO-2023-2045.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: lack of a limit on buffered post-handshake"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"known_not_affected": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-23T14:24:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6031"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-grafana-dashboard-rhel8@sha256:25214921951dbb2ce9eeda23ce3cce3291a789436927beff1317541a68554fa9_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-operator-bundle@sha256:8d4dd000a817aec11eef4303c9d17bc92b809f313796ae360d00101a3a04bf86_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-reports-rhel8@sha256:5408e8448ab25072a2fc0a018105e52668d239b7449b9abe6c44c57c439c34a1_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8-operator@sha256:15459ee1c5ec24cdfaf2427d6aa3c4fe1fa89d58608217a0dbdae709c99ba877_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/cryostat-rhel8@sha256:90305e17793e3a1275a5611745d1c6c8b056198c3e82283b50df85e747f09193_amd64",
"8Base-Cryostat-2:cryostat-tech-preview/jfr-datasource-rhel8@sha256:a0445fffa148a3cf471adbb288a07d175d7e2950d12c0f99cc56f709f4b60f29_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6085
Vulnerability from csaf_redhat - Published: 2023-10-24 15:32 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: Red Hat OpenShift distributed tracing security update
Severity
Important
Notes
Topic: An update is now available for Red Hat Openshift distributed tracing 2.9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)
* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)
* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)
* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not properly handle HMTL-like "<!--" and "-->" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This issue may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.
7.5 (High)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.
7.5 (High)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
68 references
Acknowledgments
GMO Cybersecurity by Ierae, Inc.
Takeshi Kaneko
Martin Seemann
Marten Seemann
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Openshift distributed tracing 2.9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Security Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n\n* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)\n\n* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)\n\n* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)\n\n* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6085",
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6085.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift distributed tracing security update",
"tracking": {
"current_release_date": "2026-06-05T06:25:24+00:00",
"generator": {
"date": "2026-06-05T06:25:24+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6085",
"initial_release_date": "2023-10-24T15:32:35+00:00",
"revision_history": [
{
"date": "2023-10-24T15:32:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-24T15:32:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:24+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift distributed tracing 2.9",
"product": {
"name": "Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_distributed_tracing:2.9::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift distributed tracing"
},
{
"branches": [
{
"category": "product_version",
"name": "rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"product": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"product_id": "rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-agent-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"product": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"product_id": "rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"product": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"product_id": "rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-collector-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"product": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"product_id": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"product": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"product_id": "rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"product": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"product_id": "rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-ingester-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"product": {
"name": "rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"product_id": "rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-operator-bundle\u0026tag=1.47.1-10"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"product": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"product_id": "rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-rhel8-operator\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"product": {
"name": "rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"product_id": "rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/jaeger-query-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"product": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"product_id": "rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-collector-rhel8\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"product": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"product_id": "rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-operator-bundle\u0026tag=0.81.1-8"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"product": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"product_id": "rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-rhel8-operator\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"product": {
"name": "rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"product_id": "rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8\u0026tag=2.1.1-9"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"product": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"product_id": "rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel8\u0026tag=742e3d3-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"product": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"product_id": "rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel8\u0026tag=fe53f40-1"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"product": {
"name": "rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"product_id": "rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-operator-bundle\u0026tag=0.3.1-7"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"product": {
"name": "rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"product_id": "rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8-operator\u0026tag=0.3.1-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"product": {
"name": "rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"product_id": "rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b?arch=amd64\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel8\u0026tag=0.3.1-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"product": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"product_id": "rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-agent-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"product": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"product_id": "rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"product": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"product_id": "rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-collector-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"product": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"product_id": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"product": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"product_id": "rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"product": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"product_id": "rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-ingester-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"product": {
"name": "rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"product_id": "rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-operator-bundle\u0026tag=1.47.1-10"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"product": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"product_id": "rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-rhel8-operator\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"product": {
"name": "rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"product_id": "rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/jaeger-query-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"product": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"product_id": "rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-collector-rhel8\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"product": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"product_id": "rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-operator-bundle\u0026tag=0.81.1-8"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"product": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"product_id": "rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-rhel8-operator\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"product": {
"name": "rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"product_id": "rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8\u0026tag=2.1.1-9"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"product": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"product_id": "rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel8\u0026tag=742e3d3-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"product": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"product_id": "rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel8\u0026tag=fe53f40-1"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"product": {
"name": "rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"product_id": "rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-operator-bundle\u0026tag=0.3.1-7"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"product": {
"name": "rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"product_id": "rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8-operator\u0026tag=0.3.1-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"product": {
"name": "rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"product_id": "rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e?arch=ppc64le\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel8\u0026tag=0.3.1-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"product": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"product_id": "rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-agent-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"product": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"product_id": "rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-all-in-one-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"product": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"product_id": "rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-collector-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"product": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"product_id": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-index-cleaner-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"product": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"product_id": "rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-es-rollover-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"product": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"product_id": "rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-ingester-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"product": {
"name": "rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"product_id": "rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-operator-bundle\u0026tag=1.47.1-10"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"product": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"product_id": "rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-rhel8-operator\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"product": {
"name": "rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"product_id": "rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/jaeger-query-rhel8\u0026tag=1.47.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"product": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"product_id": "rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-collector-rhel8\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"product": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"product_id": "rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-operator-bundle\u0026tag=0.81.1-8"
}
}
},
{
"category": "product_version",
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"product": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"product_id": "rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/opentelemetry-rhel8-operator\u0026tag=0.81.1-3"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x",
"product": {
"name": "rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x",
"product_id": "rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8\u0026tag=2.1.1-9"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"product": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"product_id": "rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-rhel8\u0026tag=742e3d3-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"product": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"product_id": "rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-gateway-opa-rhel8\u0026tag=fe53f40-1"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"product": {
"name": "rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"product_id": "rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-operator-bundle\u0026tag=0.3.1-7"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"product": {
"name": "rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"product_id": "rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-rhel8-operator\u0026tag=0.3.1-2"
}
}
},
{
"category": "product_version",
"name": "rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"product": {
"name": "rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"product_id": "rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"product_identification_helper": {
"purl": "pkg:oci/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372?arch=s390x\u0026repository_url=registry.redhat.io/rhosdt/tempo-query-rhel8\u0026tag=0.3.1-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x"
},
"product_reference": "rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64"
},
"product_reference": "rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le"
},
"product_reference": "rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le"
},
"product_reference": "rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x"
},
"product_reference": "rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64"
},
"product_reference": "rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le"
},
"product_reference": "rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64"
},
"product_reference": "rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x"
},
"product_reference": "rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64"
},
"product_reference": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x"
},
"product_reference": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le"
},
"product_reference": "rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64"
},
"product_reference": "rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le"
},
"product_reference": "rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x"
},
"product_reference": "rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le"
},
"product_reference": "rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64"
},
"product_reference": "rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x"
},
"product_reference": "rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x"
},
"product_reference": "rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le"
},
"product_reference": "rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64"
},
"product_reference": "rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le"
},
"product_reference": "rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64"
},
"product_reference": "rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x"
},
"product_reference": "rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x"
},
"product_reference": "rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64"
},
"product_reference": "rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le"
},
"product_reference": "rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le"
},
"product_reference": "rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64"
},
"product_reference": "rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x"
},
"product_reference": "rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x"
},
"product_reference": "rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le"
},
"product_reference": "rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64"
},
"product_reference": "rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le"
},
"product_reference": "rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64"
},
"product_reference": "rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x"
},
"product_reference": "rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le"
},
"product_reference": "rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x"
},
"product_reference": "rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64"
},
"product_reference": "rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x"
},
"product_reference": "rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le"
},
"product_reference": "rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64"
},
"product_reference": "rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le"
},
"product_reference": "rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x"
},
"product_reference": "rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64"
},
"product_reference": "rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x"
},
"product_reference": "rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64"
},
"product_reference": "rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le"
},
"product_reference": "rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64"
},
"product_reference": "rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x"
},
"product_reference": "rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le"
},
"product_reference": "rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le"
},
"product_reference": "rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64 as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64"
},
"product_reference": "rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x as a component of Red Hat OpenShift distributed tracing 2.9",
"product_id": "8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
},
"product_reference": "rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x",
"relates_to_product_reference": "8Base-RHOSDT-2.9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39318",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237776"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not properly handle HMTL-like \"\u003c!--\" and \"--\u003e\" comment tokens, nor hashbang \"#!\" comment tokens, in \u003cscript\u003e contexts. This issue may cause the template parser to improperly interpret the contents of \u003cscript\u003e contexts, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of HTML-like comments within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39318"
},
{
"category": "external",
"summary": "RHBZ#2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318"
},
{
"category": "external",
"summary": "https://go.dev/cl/526156",
"url": "https://go.dev/cl/526156"
},
{
"category": "external",
"summary": "https://go.dev/issue/62196",
"url": "https://go.dev/issue/62196"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2041.json",
"url": "https://vuln.go.dev/ID/GO-2023-2041.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of HTML-like comments within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39319",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237773"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of \"\u003cscript\", \"\u003c!--\", and \"\u003c/script\" within JS literals in \u003cscript\u003e contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of special tags within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39319"
},
{
"category": "external",
"summary": "RHBZ#2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319"
},
{
"category": "external",
"summary": "https://go.dev/cl/526157",
"url": "https://go.dev/cl/526157"
},
{
"category": "external",
"summary": "https://go.dev/issue/62197",
"url": "https://go.dev/issue/62197"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2043.json",
"url": "https://vuln.go.dev/ID/GO-2023-2043.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of special tags within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Martin Seemann"
]
}
],
"cve": "CVE-2023-39321",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw has been marked as moderate instead of high like NVD \nQUICConn.HandleData buffers data and passes it to handlePostHandshakeMessage every time the buffer contains a complete message, while HandleData doesn\u0027t limit the amount of data it can buffer, a panic or denial of service would likely be lower severity,also in order to exploit this vulnerability, an attacker would have to smuggle partial handshake data which might be rejected altogether as per tls RFC specification.Therfore because of a lower severity denial of service and conditions that are beyond the scope of attackers control,we have marked this as moderate severity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39321"
},
{
"category": "external",
"summary": "RHBZ#2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2044.json",
"url": "https://vuln.go.dev/ID/GO-2023-2044.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections"
},
{
"acknowledgments": [
{
"names": [
"Marten Seemann"
]
}
],
"cve": "CVE-2023-39322",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: lack of a limit on buffered post-handshake",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A vulnerability was found in the Go QUIC protocol implementation in the logic that processes post-handshake messages. It is an uncontrolled resource consumption flaw, triggered when a malicious connection sends data without an enforced upper bound. This leads to unbounded memory growth, causing the service to crash and resulting in a denial of service.The single-dimensional impact of denial of service and the added complexity of whether the resource exhaustion would happen, being out of an attacker\u0027s control,this has been rated as moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39322"
},
{
"category": "external",
"summary": "RHBZ#2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2045.json",
"url": "https://vuln.go.dev/ID/GO-2023-2045.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: lack of a limit on buffered post-handshake"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-24T15:32:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6085"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:075e5a497bd37954221774f3b0e97a86f87bf9a8564a87fa8269b2acb01a5fdf_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:5667bbe8cdf5ef5b93fe2eb51af1b03ac25db50ee7f13a35e97c67968f70d9bc_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-agent-rhel8@sha256:b57f6bbb0fd714828d0b9bf4759a04cad8ba98db394dbb79d8a5a9d2c48a8383_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:21de0110a12e568d4fa9a814b1f3fb79b132be34770f795c6f43922a454bba34_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:3555c97e1edbc18ecc7ad756dae043a55215bcacd31e70a41c3e444a4b5bac98_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-all-in-one-rhel8@sha256:dd221ad03daa551a30a5b3631b9a489ab29147f4d0d380f317ee6e8999c5638f_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:20dfc6ffe41e4dceb854a2fa99cad5d6a9b48e8bfc51329fed767f47b7cb461f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:9551931c00cc1052ddb32310153352d56c70a50826c29bcee53fc048c6995399_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-collector-rhel8@sha256:a3224c5e1b39ca4a33f806a5930dd37304578420f382c43158ee290fffd21533_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:699727f91948e7a870cdae3f8d3cf88cdf1df934ea6c4e5e1a86467b7ea62da3_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:6c1435712a36384a562448ec972ac39378b1e976490146cda1c98b510c76d849_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-index-cleaner-rhel8@sha256:c53876745a6ae8a8ca6ec74d22f8cae148cf4b99e45c3efdcca323b6fbb4ad0e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:0b0b4bb1d943449bbfe99653eb918583b38e6e7fc9317653acf487bb33715fcf_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:8bfdcdb4432975726865d321037b600260c4df1b3a1811d1c85523d61e91bccc_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-es-rollover-rhel8@sha256:fbce2ceb4a0c5231823c931b87726b7a6a5e5f0c87ba93abad09acb11661a675_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:0d7c0ff5a6c0e645856e1550bfb8acea763d013e4b706b7da972094c26d8a3ba_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:27b6554e746eae26692298e78d623b3b7dc6ba53330c5e398beacd8d41512732_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-ingester-rhel8@sha256:498a6186790b5e8dc2ff8bc49f5a163a51b19ee36c5030b6ae44fd0c1dbe4139_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1a5c829466a50a4ed1b509fa83b1ffacb5290840e64c1f805e462c533a26c075_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:1bbbe479ae64cb639bde227e52bb60c55a855fed9109c0ba850e2b1474c8cf5d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-operator-bundle@sha256:f2ebe6b3b913ae5d0df0b985d4c2a93fc0f9dd90e97cdc2d39fdbb40a92c494a_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:40183936d78c62c1b34807bf21c6fa3570ab5a4c3fdcf2c708b6e2225addf88d_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:db25d6492ba18bf18fe8f63c86a9d565938da15c7c639b77d6b9285db0174094_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-query-rhel8@sha256:ebc33a6ada6c578e6b113bdfa3e0a9570f15e75cb3e87fa99a3ec23056d58f02_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:17b698d2b2bde4985346b6ffe28c4b0a71e0a6fec4937144aef5db4ca20f60e4_s390x",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:c3b11d9f4e98457310bd5a2a782ef02c85dabd0a97e954a5c385f648e168b9ba_amd64",
"8Base-RHOSDT-2.9:rhosdt/jaeger-rhel8-operator@sha256:e4722e3dbb65c43212e1f86bf5b24779879288a9044d57f2c33aed5baf1b2d33_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:97a23c3fdf791b59df6bc6e6f9311599ba2f3900aebe64ce4eaf8f77a7f76336_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:b9f94f8023b1e904e874ff67b5829c3c0e0a44aaeda6e88f8f34fa92d5f8a62c_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-collector-rhel8@sha256:d68e45ac3dd60f05aab018cba084ff93195bf9175ba642164cb062f7a4b9d71f_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9b88c187427bf315cc27690e22425000b87de35b40b04e566152eaf5319043c6_s390x",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:9de35e845d96684ca3009299dc5034742031f7632f839f877d812a243fd17f75_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-operator-bundle@sha256:dcfa33e5ff47f227e6a27d3babd88b02d269e96fc040eb0bc4301edd62dd404b_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:5a2e8e06addd84a2c83976a57b84187f8450f45244bd7174b0078d2b2d9e5635_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:b5f01804dc8b8e1b0cc179dc79aff1298fe29c2239d694fedf958adee7e27ec3_amd64",
"8Base-RHOSDT-2.9:rhosdt/opentelemetry-rhel8-operator@sha256:c940703247b04c520a51bf76f09a29eaa2e30d4e4d40db14f07e0ceba89eefbd_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:f39bf591bff322ca89eddc61dc1b8ed00b018ca0aac39228c3cc33368c9928e6_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:fc8a5757270970c2bcd42f659bdde3d9edebd0054cbd01541479c9aa51135cc8_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-opa-rhel8@sha256:ff6ebe99d093908235e41a3fc84a13ae4d4b647063d0a48925b5aaa0d3017724_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:4967482a0ef9ef89de4583d7ec9f6666e2334dacb099d5cb556f93f1118f5809_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:d5e00c9ebe3d8d4b009f1f6d7383d453ce9186e7e6ec1fc4c834b86461e831d9_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-gateway-rhel8@sha256:ec8e340dc736f5f1d8f0ac4f0b5d767660bbcdc96e2dbc48d8349f20c11e5c46_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:10394c478c148eaf171f328289b1bbec15b357bd1d5eb473abb31c2cd6cb5643_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:4fb7b99e4156f1c0e67708527ba6336fab647a717e6cad08dac93d191e820c70_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-operator-bundle@sha256:c54b08652dfdecd90c604e144e08da7eb6908f89cf4b5fe9bcb7844d28a2a002_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:307638d85cab7d8502cd6acd45d626a6e26a3c37ab3fb008946e80eee2e4a372_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:8c0c9b1534e1c2e4c513b8cef10df8daf9aed0e1798b563667b50c3e8554979b_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-query-rhel8@sha256:b5b4d89e126c76fa960a5ac2ba4b63f0e74ab5439cac372e1e0ebe81c1315b3e_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:4d62e2ee295809b3cfd0f663892226f1c1f5cf4ccb841fb322149b1d4088f135_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:946413dd5505c92b1eb0c3343fedf7c99ed104cd51933b8ad0dad92c9d85e1f1_s390x",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8-operator@sha256:f870fcbe6367921e167ee564e04db11daeaeafce3fa970aa28d8f8239be6391f_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:81b5694019779cea93a418e6edf684f54525dcb7da9a4090c7b886184bebe605_ppc64le",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:e77206dcf8a958c662f816161d9fa942eb7cd1749aa165075805e0add74e4cfb_amd64",
"8Base-RHOSDT-2.9:rhosdt/tempo-rhel8@sha256:efb15ac8f44d2ddcc0ac0913131df69f31ebd4aad76c503364b5efb517eabf40_s390x"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6115
Vulnerability from csaf_redhat - Published: 2023-10-25 14:01 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: OpenShift API for Data Protection security update
Severity
Important
Notes
Topic: An update is now available for OADP-1.1-RHEL-8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)
* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)
* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)
* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not properly handle HMTL-like "<!--" and "-->" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This issue may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — | ||
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Vendor Fix
fix
Workaround
|
Known not affected
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — |
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
33 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le | — |
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
68 references
Acknowledgments
GMO Cybersecurity by Ierae, Inc.
Takeshi Kaneko
Martin Seemann
Marten Seemann
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for OADP-1.1-RHEL-8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Security Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n\n* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)\n\n* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)\n\n* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)\n\n* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6115",
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6115.json"
}
],
"title": "Red Hat Security Advisory: OpenShift API for Data Protection security update",
"tracking": {
"current_release_date": "2026-06-05T06:25:25+00:00",
"generator": {
"date": "2026-06-05T06:25:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6115",
"initial_release_date": "2023-10-25T14:01:58+00:00",
"revision_history": [
{
"date": "2023-10-25T14:01:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-25T14:01:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-OADP-1.1",
"product": {
"name": "8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_api_data_protection:1.1::el8"
}
}
}
],
"category": "product_family",
"name": "OpenShift API for Data Protection"
},
{
"branches": [
{
"category": "product_version",
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"product": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"product": {
"name": "oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"product_id": "oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"product": {
"name": "oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"product_id": "oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"product": {
"name": "oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"product_id": "oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.7-7"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"product": {
"name": "oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"product_id": "oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"product": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"product_id": "oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"product": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"product": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"product": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"product": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"product": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"product": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"product_identification_helper": {
"purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd?arch=s390x\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.7-6"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"product": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"product": {
"name": "oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"product_id": "oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"product": {
"name": "oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"product_id": "oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"product": {
"name": "oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"product_id": "oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.7-7"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"product": {
"name": "oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"product_id": "oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"product": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"product_id": "oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"product": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"product": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"product": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"product": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"product": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"product": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a?arch=amd64\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.7-6"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"product": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"product_id": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-kubevirt-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"product": {
"name": "oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"product_id": "oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-mustgather-rhel8\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"product": {
"name": "oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"product_id": "oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-operator-bundle\u0026tag=1.1.7-8"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"product": {
"name": "oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"product_id": "oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-rhel8-operator\u0026tag=1.1.7-7"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"product": {
"name": "oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"product_id": "oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"product": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"product_id": "oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"product": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"product_id": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-aws-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"product": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"product_id": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-csi-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"product": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"product_id": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-gcp-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"product": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"product_id": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-plugin-for-microsoft-azure-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"product": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"product_id": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-velero-restic-restore-helper-rhel8\u0026tag=1.1.7-6"
}
}
},
{
"category": "product_version",
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le",
"product": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le",
"product_id": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c?arch=ppc64le\u0026repository_url=registry.redhat.io/oadp/oadp-volume-snapshot-mover-rhel8\u0026tag=1.1.7-6"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64"
},
"product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le"
},
"product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x"
},
"product_reference": "oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x"
},
"product_reference": "oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64"
},
"product_reference": "oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le"
},
"product_reference": "oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le"
},
"product_reference": "oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64"
},
"product_reference": "oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x"
},
"product_reference": "oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le"
},
"product_reference": "oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x"
},
"product_reference": "oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64"
},
"product_reference": "oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64"
},
"product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le"
},
"product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x"
},
"product_reference": "oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64"
},
"product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le"
},
"product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x"
},
"product_reference": "oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64"
},
"product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x"
},
"product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le"
},
"product_reference": "oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le"
},
"product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x"
},
"product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64"
},
"product_reference": "oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64"
},
"product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le"
},
"product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x"
},
"product_reference": "oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le"
},
"product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64"
},
"product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x"
},
"product_reference": "oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le"
},
"product_reference": "oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x"
},
"product_reference": "oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
},
"product_reference": "oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64 as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64"
},
"product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x"
},
"product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"relates_to_product_reference": "8Base-OADP-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le as a component of 8Base-OADP-1.1",
"product_id": "8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
},
"product_reference": "oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le",
"relates_to_product_reference": "8Base-OADP-1.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39318",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237776"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not properly handle HMTL-like \"\u003c!--\" and \"--\u003e\" comment tokens, nor hashbang \"#!\" comment tokens, in \u003cscript\u003e contexts. This issue may cause the template parser to improperly interpret the contents of \u003cscript\u003e contexts, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of HTML-like comments within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39318"
},
{
"category": "external",
"summary": "RHBZ#2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318"
},
{
"category": "external",
"summary": "https://go.dev/cl/526156",
"url": "https://go.dev/cl/526156"
},
{
"category": "external",
"summary": "https://go.dev/issue/62196",
"url": "https://go.dev/issue/62196"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2041.json",
"url": "https://vuln.go.dev/ID/GO-2023-2041.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of HTML-like comments within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39319",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237773"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of \"\u003cscript\", \"\u003c!--\", and \"\u003c/script\" within JS literals in \u003cscript\u003e contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of special tags within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39319"
},
{
"category": "external",
"summary": "RHBZ#2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319"
},
{
"category": "external",
"summary": "https://go.dev/cl/526157",
"url": "https://go.dev/cl/526157"
},
{
"category": "external",
"summary": "https://go.dev/issue/62197",
"url": "https://go.dev/issue/62197"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2043.json",
"url": "https://vuln.go.dev/ID/GO-2023-2043.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of special tags within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Martin Seemann"
]
}
],
"cve": "CVE-2023-39321",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw has been marked as moderate instead of high like NVD \nQUICConn.HandleData buffers data and passes it to handlePostHandshakeMessage every time the buffer contains a complete message, while HandleData doesn\u0027t limit the amount of data it can buffer, a panic or denial of service would likely be lower severity,also in order to exploit this vulnerability, an attacker would have to smuggle partial handshake data which might be rejected altogether as per tls RFC specification.Therfore because of a lower severity denial of service and conditions that are beyond the scope of attackers control,we have marked this as moderate severity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39321"
},
{
"category": "external",
"summary": "RHBZ#2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2044.json",
"url": "https://vuln.go.dev/ID/GO-2023-2044.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections"
},
{
"acknowledgments": [
{
"names": [
"Marten Seemann"
]
}
],
"cve": "CVE-2023-39322",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: lack of a limit on buffered post-handshake",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A vulnerability was found in the Go QUIC protocol implementation in the logic that processes post-handshake messages. It is an uncontrolled resource consumption flaw, triggered when a malicious connection sends data without an enforced upper bound. This leads to unbounded memory growth, causing the service to crash and resulting in a denial of service.The single-dimensional impact of denial of service and the added complexity of whether the resource exhaustion would happen, being out of an attacker\u0027s control,this has been rated as moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39322"
},
{
"category": "external",
"summary": "RHBZ#2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2045.json",
"url": "https://vuln.go.dev/ID/GO-2023-2045.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: lack of a limit on buffered post-handshake"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"known_not_affected": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-25T14:01:58+00:00",
"details": "For details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6115"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:1d9eb04551c7629c1c955a83f56c9950af52cf507a960673fbbb71bc53a45d42_amd64",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:a107558ebc95b2d1c57a3571491bbf6ec88921ca8e6e45419dbec9bf47d505b9_ppc64le",
"8Base-OADP-1.1:oadp/oadp-kubevirt-velero-plugin-rhel8@sha256:ca91eab699f97705c3e696150446582caab5b97db9230c0a2a7d0b9e09a7c571_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:2d68a7b0030a673d88d59d712352614f136704fc95a5523484eea11eeeb76619_s390x",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:d2ea8cc469b9bc2cb99dc81ef1c8c043ef7d4c320b588f7bf1e221807767a21c_amd64",
"8Base-OADP-1.1:oadp/oadp-mustgather-rhel8@sha256:f4db0cbe93b098c3e73e65bf83cdd73214e6eb9894a5d1d42d0f5fd58162a750_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:7381cf4462e525945055a1b2b0bf168d469d2bd3f67bb10f6c8cb13e58fa9569_ppc64le",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:a709259c3a6d923485ed217e9dd74f11c02a32c113f017ebbd8c49d60c83c47b_amd64",
"8Base-OADP-1.1:oadp/oadp-operator-bundle@sha256:f6e549d662f01f8ccf0c1ab9016b1aadcd417096bc49133a536292c55049c13a_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:0f7a9f47f67af388ebebb7ef28a775857ac37d35e234ee228a4ea25bfc64c3e3_ppc64le",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:2d3e387f50011ea9496e7524624100afb1e5eb9aeb220c971ac850e3d3fb3ecd_s390x",
"8Base-OADP-1.1:oadp/oadp-rhel8-operator@sha256:bf0607d865944a9011852bcbd92d2f289f4086aba2186331ab4a65c7bd065604_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:9bc0630106402a86da33e4a21c5d64c6379125f6a446519f5a659ba1ed110b76_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:ec6dd5b1b4a9382b86ae970240e25f11a4eb8e2ba42a2f6f727a984cf79f0cdb_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-aws-rhel8@sha256:fbef5cf169028b7e2c16c00ab699bcdb5733e2368ead683639495c2c584e08d7_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:57e64b3f70a5d06d68b2dfa3dfd329474ee39354e1ff3730742ae5869ffe9242_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:9535d60aeca08fbcb35f5ddecc455fbf8fd240b185b0359fcf15db088beed93b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-csi-rhel8@sha256:a68d39f20190d5dd35cb799b02ad3ff4fdaf52ab22f7785ba4be4d20c95a09af_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:4a509a9562f941a6eb85e29db424080204172cfcee21b2cbbe066efb5c60198c_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:7933617816babdf5e6da973b7ffbf54a2c280a66fc6a9861e2dc731f01043d80_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-gcp-rhel8@sha256:c8e99a08d99db02bb8a5f3fde5ff77108b4699fa710c12b257e411e1f3014f7b_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:209ccbbf81de2154f620e3dc690a053d7110bc805fc148cff668bcab43674894_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7b4c2fbf7ae8c859bfc976a1e07ef02e430792b16f36fd7fe9e447c7427d5003_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-for-microsoft-azure-rhel8@sha256:7bc516a3dc31d5675989c253dfc5d4f5b6e5675ed0dcd99aeabcf45748cfb82a_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:569d29f6abf7e47afa87dc786028dd1b3b25c703f03bb72f0cdb56fa9fd8322e_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c2e022362052875f262fc082268fe1093d1a7a60aa51479b05346f5fc857864c_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-plugin-rhel8@sha256:c521866aa8677b189bfe5b07f38b640e5fe5f392bcf6af9a25cda0daab393cd9_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:27b11e8db2a414fdbc1cf7d0844db973f3f23c2d47af1c6890f42b1e7627efda_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:2ced4f24ae6649bdeda3d075841b77c2171193e882c5559ec1d6f3cad6f94a8b_amd64",
"8Base-OADP-1.1:oadp/oadp-velero-restic-restore-helper-rhel8@sha256:7466b02853935e62195da737dc4dc1e7776537a330b943feb971d9b0aab01a5b_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:12379906744bbe5df4574415a81fa2a2d79e42317cf72c168e5ee05380d2c412_ppc64le",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:19772d059d2f70b59c21f01b8cdb34736dd835a695586e74234785b577abbf74_s390x",
"8Base-OADP-1.1:oadp/oadp-velero-rhel8@sha256:f1d013a16cc4ef007406323214d6e72b2a09ce9f38326df50497a2425e3a66b2_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:0e4b9f532f0ae2242b50ce34be7b7f5df6986c19ff126198a7b6aca4f8661d4a_amd64",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:7cc9fc024056ca5e857a6135bd99607d14eef47426eea87286f4e33f0751fcbd_s390x",
"8Base-OADP-1.1:oadp/oadp-volume-snapshot-mover-rhel8@sha256:8abfd51f73690022c8e646ffe9a30f8b8e135c56eb67348a4bc0c2cfedbea29c_ppc64le"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6161
Vulnerability from csaf_redhat - Published: 2023-10-30 02:16 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.14 security and bug fix update
Severity
Important
Notes
Topic: The Migration Toolkit for Containers (MTC) 1.7.14 is now available.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)
* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)
* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)
* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not properly handle HMTL-like "<!--" and "-->" comment tokens, nor hashbang "#!" comment tokens, in <script> contexts. This issue may cause the template parser to improperly interpret the contents of <script> contexts, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of "<script", "<!--", and "</script" within JS literals in <script> contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.
6.1 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — | ||
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
11 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 | — |
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
68 references
Acknowledgments
GMO Cybersecurity by Ierae, Inc.
Takeshi Kaneko
Martin Seemann
Marten Seemann
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.7.14 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n\n* golang: html/template: improper handling of special tags within script contexts (CVE-2023-39319)\n\n* golang: html/template: improper handling of HTML-like comments within script contexts (CVE-2023-39318)\n\n* golang: crypto/tls: panic when processing post-handshake message on QUIC connections (CVE-2023-39321)\n\n* golang: crypto/tls: lack of a limit on buffered post-handshake (CVE-2023-39322)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6161",
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6161.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.7.14 security and bug fix update",
"tracking": {
"current_release_date": "2026-06-05T06:25:31+00:00",
"generator": {
"date": "2026-06-05T06:25:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6161",
"initial_release_date": "2023-10-30T02:16:18+00:00",
"revision_history": [
{
"date": "2023-10-30T02:16:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-30T02:16:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.7",
"product": {
"name": "8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.7::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.7.14-3"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"product": {
"name": "rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"product_id": "rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-legacy-rhel8-operator\u0026tag=v1.7.14-4"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.7.14-4"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.7.14-3"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"product_id": "rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-aws-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"product_id": "rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-restic-restore-helper-rhel8\u0026tag=v1.7.14-2"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64",
"product": {
"name": "rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64",
"product_id": "rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-velero-plugin-rhel8\u0026tag=v1.7.14-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64"
},
"product_reference": "rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64 as a component of 8Base-RHMTC-1.7",
"product_id": "8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
},
"product_reference": "rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.7"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39318",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237776"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not properly handle HMTL-like \"\u003c!--\" and \"--\u003e\" comment tokens, nor hashbang \"#!\" comment tokens, in \u003cscript\u003e contexts. This issue may cause the template parser to improperly interpret the contents of \u003cscript\u003e contexts, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of HTML-like comments within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39318"
},
{
"category": "external",
"summary": "RHBZ#2237776",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237776"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39318",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39318"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39318"
},
{
"category": "external",
"summary": "https://go.dev/cl/526156",
"url": "https://go.dev/cl/526156"
},
{
"category": "external",
"summary": "https://go.dev/issue/62196",
"url": "https://go.dev/issue/62196"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2041.json",
"url": "https://vuln.go.dev/ID/GO-2023-2041.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of HTML-like comments within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Takeshi Kaneko"
],
"organization": "GMO Cybersecurity by Ierae, Inc."
}
],
"cve": "CVE-2023-39319",
"cwe": {
"id": "CWE-79",
"name": "Improper Neutralization of Input During Web Page Generation (\u0027Cross-site Scripting\u0027)"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237773"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The html/template package did not apply the proper rules for handling occurrences of \"\u003cscript\", \"\u003c!--\", and \"\u003c/script\" within JS literals in \u003cscript\u003e contexts. This issue may cause the template parser to improperly consider script contexts to be terminated early, causing actions to be improperly escaped.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of special tags within script contexts",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39319"
},
{
"category": "external",
"summary": "RHBZ#2237773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237773"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39319",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39319"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39319"
},
{
"category": "external",
"summary": "https://go.dev/cl/526157",
"url": "https://go.dev/cl/526157"
},
{
"category": "external",
"summary": "https://go.dev/issue/62197",
"url": "https://go.dev/issue/62197"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2043.json",
"url": "https://vuln.go.dev/ID/GO-2023-2043.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of special tags within script contexts"
},
{
"acknowledgments": [
{
"names": [
"Martin Seemann"
]
}
],
"cve": "CVE-2023-39321",
"cwe": {
"id": "CWE-805",
"name": "Buffer Access with Incorrect Length Value"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. Processing an incomplete post-handshake message for a QUIC connection caused a panic.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The flaw has been marked as moderate instead of high like NVD \nQUICConn.HandleData buffers data and passes it to handlePostHandshakeMessage every time the buffer contains a complete message, while HandleData doesn\u0027t limit the amount of data it can buffer, a panic or denial of service would likely be lower severity,also in order to exploit this vulnerability, an attacker would have to smuggle partial handshake data which might be rejected altogether as per tls RFC specification.Therfore because of a lower severity denial of service and conditions that are beyond the scope of attackers control,we have marked this as moderate severity",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39321"
},
{
"category": "external",
"summary": "RHBZ#2237777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39321"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39321"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2044.json",
"url": "https://vuln.go.dev/ID/GO-2023-2044.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: panic when processing post-handshake message on QUIC connections"
},
{
"acknowledgments": [
{
"names": [
"Marten Seemann"
]
}
],
"cve": "CVE-2023-39322",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-09-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2237778"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. QUIC connections do not set an upper bound on the amount of data buffered when reading post-handshake messages, allowing a malicious QUIC connection to cause unbounded memory growth. With the fix, connections now consistently reject messages larger than 65KiB in size.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: lack of a limit on buffered post-handshake",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "A vulnerability was found in the Go QUIC protocol implementation in the logic that processes post-handshake messages. It is an uncontrolled resource consumption flaw, triggered when a malicious connection sends data without an enforced upper bound. This leads to unbounded memory growth, causing the service to crash and resulting in a denial of service.The single-dimensional impact of denial of service and the added complexity of whether the resource exhaustion would happen, being out of an attacker\u0027s control,this has been rated as moderate severity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39322"
},
{
"category": "external",
"summary": "RHBZ#2237778",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2237778"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39322"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39322"
},
{
"category": "external",
"summary": "https://go.dev/cl/523039",
"url": "https://go.dev/cl/523039"
},
{
"category": "external",
"summary": "https://go.dev/issue/62266",
"url": "https://go.dev/issue/62266"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ",
"url": "https://groups.google.com/g/golang-dev/c/2C5vbR-UNkI/m/L1hdrPhfBAAJ"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-2045.json",
"url": "https://vuln.go.dev/ID/GO-2023-2045.json"
}
],
"release_date": "2023-09-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: lack of a limit on buffered post-handshake"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-30T02:16:18+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6161"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.7:rhmtc/openshift-migration-controller-rhel8@sha256:db6e79aff9c592fe7f27145d01d7444f4dc4e0144cc036ae916d9cf0c95a9cfe_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-hook-runner-rhel8@sha256:c12186c030ce5192c823351ac212c1acf1c85fa574267bc64d2cdf90c5dae87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-legacy-rhel8-operator@sha256:ce90e9b7af04340afc72f38cfdf5b64d2a6fcae23f59223e2d510c028823d87f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-log-reader-rhel8@sha256:58f92f50972a948c40319a5c2c9abfe3d44034ba1538f018b51f9998ee875e90_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-must-gather-rhel8@sha256:cc19dae1824b42b15a8015f6a88f1bc0f85e75a9e7d14f38313a27d93c88f22f_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-openvpn-rhel8@sha256:79006886844f82db986d9778994727cd40943faa77b2740b54f312fca6602950_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-operator-bundle@sha256:34e80eefb9b91a41bc4648e02de37d262347085c4da9bd032f43c8bb59e4459a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-registry-rhel8@sha256:4dfa0ace1d92a6ae70d08dc3aff621e5f332956f213db987d9862ed2685e6733_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rhel8-operator@sha256:0dc885972e7035f2c4b31016f4053e2bd73e328ace6aeee07380db5e0b055b02_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:cc4a32d349982a82cee52247627f1fd76b6630a6ddb4523a326e83f99d65826d_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-ui-rhel8@sha256:b3fd7bf0c25ecd110635de6e7d071cfe314cbe50ee0f924f3dfa985fd24ae59e_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-aws-rhel8@sha256:c65d0ecc82eb9ebf2256c599b116e5878e57192caca90a83c1035421be914657_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-gcp-rhel8@sha256:7ab0d93fe306b1baa0ae64a9c859776109f2cb27a0e468dc1d361e72a99d21b9_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-plugin-for-microsoft-azure-rhel8@sha256:c89b222e9e9ae02a505fb6986ef1b6ca4b0e15706e3d44d2f03176af7f0d9b6a_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-restic-restore-helper-rhel8@sha256:06010b3b3c7ad25cf0c122cf49bb7795712eebc47936e3c88db46256e93f0843_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-migration-velero-rhel8@sha256:39ac9f6895b2f71cc699c806df204b10af71f18a28de3d3839b7cde6cde13f64_amd64",
"8Base-RHMTC-1.7:rhmtc/openshift-velero-plugin-rhel8@sha256:4aefc874e9869305ec80f46548c5499b4887e29135efb9ecad01dfd5a54b31fa_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6296
Vulnerability from csaf_redhat - Published: 2023-11-02 19:16 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: Release of OpenShift Serverless 1.30.2
Severity
Important
Notes
Topic: Red Hat OpenShift Serverless version 1.30.2 is now available.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Version 1.30.2 of the OpenShift Serverless Operator is supported on Red Hat
OpenShift Container Platform versions 4.11, 4.12, and 4.13.
This release includes security, bug fixes, and enhancements.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
For more details about the security issues, including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE pages listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
37 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Serverless version 1.30.2 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Version 1.30.2 of the OpenShift Serverless Operator is supported on Red Hat\nOpenShift Container Platform versions 4.11, 4.12, and 4.13.\n\nThis release includes security, bug fixes, and enhancements.\n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\nFor more details about the security issues, including the impact, a CVSS score, acknowledgements, and other related information, refer to the CVE pages listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6296",
"url": "https://access.redhat.com/errata/RHSA-2023:6296"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6296.json"
}
],
"title": "Red Hat Security Advisory: Release of OpenShift Serverless 1.30.2",
"tracking": {
"current_release_date": "2026-06-05T06:25:42+00:00",
"generator": {
"date": "2026-06-05T06:25:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6296",
"initial_release_date": "2023-11-02T19:16:02+00:00",
"revision_history": [
{
"date": "2023-11-02T19:16:02+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-02T19:16:02+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Serverless 1.30",
"product": {
"name": "Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_serverless:1.30::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Serverless"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"product": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"product_id": "openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/client-kn-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"product_id": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"product_id": "openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"product": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"product_id": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"product_id": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-controller-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"product_id": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"product_id": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-post-install-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"product_id": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-receiver-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"product_id": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-webhook-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"product_id": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-filter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"product_id": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-ingress-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"product_id": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtchannel-broker-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"product_id": "openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"product_id": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"product": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"product_id": "openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"product": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"product_id": "openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/func-utils-rhel8\u0026tag=1.30.2-2"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"product": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"product_id": "openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/ingress-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"product": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"product_id": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"product": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"product_id": "openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/knative-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"product": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"product_id": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/kn-cli-artifacts-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"product": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"product_id": "openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/kourier-control-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"product_id": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8\u0026tag=1.30.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-builder-rhel8\u0026tag=1.30.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8\u0026tag=1.30.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le",
"product": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le",
"product_id": "openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/svls-must-gather-rhel8\u0026tag=1.30.2-1"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"product": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"product_id": "openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-controller-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"product": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"product_id": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-webhook-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"product": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"product_id": "openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serverless-rhel8-operator\u0026tag=1.30.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"product_id": "openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-activator-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"product_id": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-hpa-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"product_id": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"product_id": "openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"product_id": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"product_id": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"product_id": "openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-queue-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"product_id": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"product": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"product_id": "openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-webhook-rhel8\u0026tag=1.9.0-4"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"product": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"product_id": "openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"product_identification_helper": {
"purl": "pkg:oci/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/client-kn-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"product": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"product_id": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"product": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"product_id": "openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"product": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"product_id": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"product_id": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-controller-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"product_id": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"product_id": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-post-install-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"product_id": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-receiver-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"product_id": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-webhook-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"product_id": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-filter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"product_id": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-ingress-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"product": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"product_id": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtchannel-broker-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"product": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"product_id": "openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"product": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"product_id": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"product": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"product_id": "openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"product": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"product_id": "openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/func-utils-rhel8\u0026tag=1.30.2-2"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"product": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"product_id": "openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/ingress-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"product": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"product_id": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"product_identification_helper": {
"purl": "pkg:oci/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"product": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"product_id": "openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/knative-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"product": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"product_id": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/kn-cli-artifacts-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"product": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"product_id": "openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/kourier-control-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"product_id": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8\u0026tag=1.30.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-builder-rhel8\u0026tag=1.30.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8\u0026tag=1.30.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"product": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"product_id": "openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"product_identification_helper": {
"purl": "pkg:oci/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/svls-must-gather-rhel8\u0026tag=1.30.2-1"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"product": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"product_id": "openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-controller-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"product": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"product_id": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-webhook-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"product": {
"name": "openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"product_id": "openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serverless-operator-bundle\u0026tag=1.30.2-2"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"product": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"product_id": "openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serverless-rhel8-operator\u0026tag=1.30.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"product": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"product_id": "openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-activator-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"product_id": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-hpa-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"product_id": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"product": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"product_id": "openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"product_id": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"product_id": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"product": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"product_id": "openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-queue-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"product": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"product_id": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"product": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"product_id": "openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc?arch=amd64\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-webhook-rhel8\u0026tag=1.9.0-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"product": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"product_id": "openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/client-kn-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"product": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"product_id": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"product": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"product_id": "openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"product": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"product_id": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"product": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"product_id": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"product_id": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-controller-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"product_id": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"product_id": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-post-install-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"product_id": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-receiver-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"product": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"product_id": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-kafka-broker-webhook-rhel8\u0026tag=1.9.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"product_id": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-filter-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"product": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"product_id": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtbroker-ingress-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"product": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"product_id": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtchannel-broker-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"product": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"product_id": "openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-mtping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"product": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"product_id": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"product": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"product_id": "openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/eventing-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"product": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"product_id": "openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"product_identification_helper": {
"purl": "pkg:oci/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/func-utils-rhel8\u0026tag=1.30.2-2"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"product": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"product_id": "openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/ingress-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"product": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"product_id": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"product": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"product_id": "openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/knative-rhel8-operator\u0026tag=1.30.2-3"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"product": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"product_id": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/kn-cli-artifacts-rhel8\u0026tag=1.9.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"product": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"product_id": "openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/kourier-control-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"product": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"product_id": "openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"product_identification_helper": {
"purl": "pkg:oci/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/svls-must-gather-rhel8\u0026tag=1.30.2-1"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"product": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"product_id": "openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-controller-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"product": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"product_id": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"product_identification_helper": {
"purl": "pkg:oci/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/net-istio-webhook-rhel8\u0026tag=1.9.0-5"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"product": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"product_id": "openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serverless-rhel8-operator\u0026tag=1.30.2-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"product": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"product_id": "openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-activator-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"product_id": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-hpa-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"product": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"product_id": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-autoscaler-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"product": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"product_id": "openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-controller-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"product_id": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"product": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"product_id": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-domain-mapping-webhook-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"product": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"product_id": "openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-queue-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"product": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"product_id": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-storage-version-migration-rhel8\u0026tag=1.9.0-4"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"product": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"product_id": "openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"product_identification_helper": {
"purl": "pkg:oci/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302?arch=s390x\u0026repository_url=registry.redhat.io/openshift-serverless-1/serving-webhook-rhel8\u0026tag=1.9.0-4"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"product_id": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8\u0026tag=1.30.0-8"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-builder-rhel8\u0026tag=1.30.0-9"
}
}
},
{
"category": "product_version",
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"product": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"product_id": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"product_identification_helper": {
"purl": "pkg:oci/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3?arch=arm64\u0026repository_url=registry.redhat.io/openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8\u0026tag=1.30.0-9"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x"
},
"product_reference": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le"
},
"product_reference": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64"
},
"product_reference": "openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x"
},
"product_reference": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64"
},
"product_reference": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le"
},
"product_reference": "openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64"
},
"product_reference": "openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64"
},
"product_reference": "openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x"
},
"product_reference": "openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le"
},
"product_reference": "openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x"
},
"product_reference": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64"
},
"product_reference": "openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64"
},
"product_reference": "openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x"
},
"product_reference": "openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x"
},
"product_reference": "openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x"
},
"product_reference": "openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64"
},
"product_reference": "openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x"
},
"product_reference": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64"
},
"product_reference": "openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x"
},
"product_reference": "openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64"
},
"product_reference": "openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x"
},
"product_reference": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64"
},
"product_reference": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x"
},
"product_reference": "openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64"
},
"product_reference": "openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le"
},
"product_reference": "openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64"
},
"product_reference": "openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x"
},
"product_reference": "openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le"
},
"product_reference": "openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le"
},
"product_reference": "openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x"
},
"product_reference": "openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64"
},
"product_reference": "openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64"
},
"product_reference": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le"
},
"product_reference": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x"
},
"product_reference": "openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x"
},
"product_reference": "openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64"
},
"product_reference": "openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le"
},
"product_reference": "openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x"
},
"product_reference": "openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le"
},
"product_reference": "openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64"
},
"product_reference": "openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x"
},
"product_reference": "openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le"
},
"product_reference": "openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64"
},
"product_reference": "openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x"
},
"product_reference": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64"
},
"product_reference": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le"
},
"product_reference": "openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64"
},
"product_reference": "openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le"
},
"product_reference": "openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64"
},
"product_reference": "openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x"
},
"product_reference": "openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x"
},
"product_reference": "openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64"
},
"product_reference": "openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x"
},
"product_reference": "openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x"
},
"product_reference": "openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64"
},
"product_reference": "openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x"
},
"product_reference": "openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x"
},
"product_reference": "openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64"
},
"product_reference": "openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64"
},
"product_reference": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x"
},
"product_reference": "openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64"
},
"product_reference": "openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le"
},
"product_reference": "openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x"
},
"product_reference": "openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x"
},
"product_reference": "openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64 as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64"
},
"product_reference": "openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"relates_to_product_reference": "8Base-RHOSS-1.30"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le as a component of Red Hat OpenShift Serverless 1.30",
"product_id": "8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
},
"product_reference": "openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le",
"relates_to_product_reference": "8Base-RHOSS-1.30"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-02T19:16:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6296"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-02T19:16:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6296"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-02T19:16:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6296"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-02T19:16:02+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6296"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:07cd63dc28c59acdf8fffcacd5cee403275b66bb0b36baa94d45335a5ac5c141_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:8cb5769df87931ae625d20a0983a492a3dd7f6b12b38a4c4cb8e884cb60a4b2a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8@sha256:e0e773344db5018233bc9aa5954e6afe0403b2f356866efc7d4dcec60df9282b_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:3fe21a55517a7e94fc1ebe2cd7191a48c52b88b68f32a278200b4c9d47d51df7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:47d979bf31c3293987b3e891a8053f31a93c65c119b9afe50873654c666b92db_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8@sha256:dc2883e2c901540ee6e1e7247006e2260337cb7fe0477fc02cd029843f0e68a1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:1543654b069e9cd45b5a0d17c4c4d38c415ae3beebc3cdff45ac22596453e15b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:b86203254be737f9a700f29f85b56d43367442f5fe4a7b3bcefcb0e97d24f982_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-data-index-ephemeral-rhel8@sha256:d3e3c4777360289235620c308f57d95219ca66ccb5331a092b1e6bd0f0f90b6e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:9254aa62c43241dddd4a0c17dcec57e8521fa5583c70d11133ee5053bd8c6b30_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:c2c18a5efff4a78203f38b8ca76671fc389c49237b1426d3c9a18e64708c756b_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-builder-rhel8@sha256:fe8fe8c2cea0f2957fe7ab238c6cf6c86cb480f75fb632b9128a3c5775d3c9c1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:248a55059ca855ffdce83ea755d7bccd0094ba7ede795ddb892f17a3d360f24a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:38fe7d3ec137725d6d103603830866f3992608888692f981ca1e16aa03a97df3_arm64",
"8Base-RHOSS-1.30:openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8@sha256:f01f75bfd37282591cbc47907d1f5df57ccffa526a636b9e84b4b8f5f4b78997_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:04552463c9c9ed820a107d16739958aeae2c59e6cbf209673b083716e1831224_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:632be306dc2cdb98c5025447ba6a04758d037ab55c9324f69f9718fe136c006c_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/client-kn-rhel8@sha256:d12dc8841593e2c241d2d0239804292760f65517cb5743c24802e62c02d02abf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:091f2f92aa0439f7c17d203189e65ab0752c12cd385f6e51b642fd2a595f5128_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:133ef116ff45e4f2997465501cec4a1646d04b7c846a6640bf1a84bf3de115c4_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8@sha256:e1bb69c8055e32c298fb44dfd765a9735537406cbbf98c11ab051494e9bbaba3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:4cbea97b553d63340b3943b3f5d22e6582fe4b2f9aa21447d549806528b1f785_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:7a189da6f0de2054ca1a56c4cb1979ab3985b68c0b81be677cd475bdee9929e4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-controller-rhel8@sha256:dbbfef23c109add5e192b2930941c156d0a6d2334650f144975e2d1031f8bcdf_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:08c8f59d5c59885761d6004efdba303609210f7c595c28e8eb0bb0acca8e2313_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:13506b369c0d8b7a141cfd44f97b08bfbb97d5fbc3a996ead0b73e886cfe3acf_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-controller-rhel8@sha256:3efd01822c309d9204e2316874474b142f41704ab1f9e5d9c8a5a069f1bf040a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:44aff1a5ab3171083d9c46d32425931367c720acb3733aeef4c0d5c1b5321b5d_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:dac1e99a50449415c2125440588975100692e76e38140a0cd002e996c8bc19d1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8@sha256:fe0033a3c0328aae5a30913490c67c7e4d1643fb6fdbfdc29d8dfa699ce0bb06_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:3ea33587afb65d36532542f985618432cf652894738b5844830478c06a167fcc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:41207762bc2e8a96d9cc1f40e5be8d0785b92b9df1fae4c947fd5f58d39ce80f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-controller-rhel8@sha256:c7858bd50cbf967e498e1b79a55f458688c6fd1f4cd55139ff047a750ed0530c_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:16fb16da6f8b4456af5898879d63d449a5ae290e38c351ebd527fb5d40a0e2c7_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:702f06a7db422c4679300f46b1f5db5f34c13c71f77960251497b9cd049e7792_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8@sha256:72906ac2612567fe3ea6ea02fc0f454ea01dabf51f4c9ba2fd8cc6d894c302b0_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:4255a0d699e16b5a4e7e90e3ba5057ccdf259851fa8ade71ce8c2bc50864ec97_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:dde479e0255b31c862c73ac7aa8faa7842c279e1be7519c207211fa8331ed4f9_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-post-install-rhel8@sha256:f515825c828638ca568343b2e996cc41e7044ff539e994d3cb37af0d247f0370_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:5e65c080f6b6ad721723a617b8c99c3935d5d83b9da991b3a0e3910656468f56_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:9dc02c49a4f4527142a2d688e4996d268062cdb82820a4b6c1611cf90f11d811_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-receiver-rhel8@sha256:ca5a592d80409f674590e3d19f8d10192e91fc5b80d26e46d269c5e77e00035a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:0c476f3dccf74f09594bddb820746326e0f944abc717877562cb6c16036ae74f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:aeab9f39b40ceba048451f9cf013063cd717911ff4001b13129e3ffc68b3f126_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-kafka-broker-webhook-rhel8@sha256:f9203bdf2f0e22d88722f13aee39f5e57e22de223ff95b1df58454f3322db83f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:1fbaac91656cd8d788bacea7d3178def39c9d5a4ff98d9d2563f43f73907b7aa_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:7b1ef1f93c7e3711a30168b742658951adbbfbbc49e89623d34f4d15677a51a0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-filter-rhel8@sha256:8a6326f00fa7ca21ae3ffc49ba06d244591d271718192fea0391ba1085f963de_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:4fab3f57eb15ea63271d90c96fac4bb5add49a9a01b5904bb7f3a07767ef6729_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:56a6f4dce87527c45581c82b4e0cf573528d667fcde6a64a25bea3297bcba7b5_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtbroker-ingress-rhel8@sha256:6ecc1cb653580e91d2021eff5839733d2321e11fe88948c1a2ed1d9e113231b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:1b85b5d8f4f55241ec0db018a1943910b85791fd3e68105c67288b1ebbdb3d45_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:a105d049342c58d4f37a97a11e4b082b0451417dcfdab1cf1cf6414e5567cab9_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtchannel-broker-rhel8@sha256:b9b0edd6a1808d025900a616552cad7d656783f37d80e83acbaab18b938e0db3_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:34692fee06034c1ee87fa0de14cbf46ba9d01b760d1a287dff48ffc745ec75a8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:a97241ce8f13684c9200aeffb395d87fd20e4e7d3cb071f6376b05916459f2f3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-mtping-rhel8@sha256:dc69eeb47b11b0306066b1a994a8faab956043390fe461df6eef5a502b396c79_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:036974bc6a45dd3971233370d3d61159411bdd03460fe96afc9ddbe9f8c04a58_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:538312d7a0f39235541f16d4bbfc68e8a0f6defd8cebdb9335f74ac13cb53ed0_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-storage-version-migration-rhel8@sha256:bf29f19349523b47485119c7bda8634bb4f1d1907fe86ef54880dcdb57cfe733_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:3e0afc59de7e91c6266657f6d9ce1de8405d56ab171a005a1e09159ce162b0d3_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:76b8bac332bd58bfb9765e04d9dcb0338254a61779d2d232ea5898244da359b2_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/eventing-webhook-rhel8@sha256:86734f1f2a5dbd62e1937ae3fd04d3c088eeda74179b444259990ae6fcb665ce_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:0b71060287485d5728b81c890fac97e6e1bc0b7fe73f488d446cd9ceefc072d6_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:3f3928554beec420eceda412196f386a52ad30d190504b7cc811ef360370c777_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/func-utils-rhel8@sha256:537ac0e39cd5898ba65b741707fb6e5981b42a426e970f35222fe166c45f6425_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:143e80e240e30eefe8e5262529f3e43df7386aee2730d5bfe8af5d8cd3f730d1_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:254e090465e5923939888ed4e5ed187981485f8868bc31cebc300412b62e8bd8_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/ingress-rhel8-operator@sha256:f0025b73dc2af1ed481f9fc1a02f43c4b6827d04fbdca5380a1d2bae53747501_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:1c31130fa638c0bf8294cda7d4029f3a4a8b6489c243f0ff245cdd1e976b182c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:95c47ca06184e042f65fe3fbcaa76425b0d092d5575bb1a5346d75274e9908f8_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kn-cli-artifacts-rhel8@sha256:d27a87311a9a5c6a57e70ed7d15973ee730ebf53ba418070a9b6c2e9e5ce6d2f_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:aa33810e0a45d2e97daf6880d259de78e2c7ef60576b8c5304deca8a91c9c0e6_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:dd91c9f5fe71a2aea6d8f3f2d20d4eac14dd7f5cfa984e53dcf9b87ced3e3f0f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/knative-rhel8-operator@sha256:ed3107ee9d67c218ba2ad65a877356dabbc6775302b542a1db2ebfed6be60bee_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:77d84a8e666045d96139a9c3ccd191fecb7e86718c084dbc8f532a4985393a8d_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:e94285c1cce41e495873ebec367d20db30c3b47c70b735236289925ad264bf89_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/kourier-control-rhel8@sha256:f01738e575acc0167a2bc73a7cc521a90e1319c0c2bb13d17a8e6c29b3586d2f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:7c78962f1e53096dc341b82f2fd0a628673a10f03bb709573d3e2571028f31d5_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:9a161c1fdc3d29d2879096196ec8d946567f4788f19519ba10a40f0d2a9adef6_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-controller-rhel8@sha256:cb311f25036afb3aea9695aa72b5867440c5266e05b8512c5aed4cdce82d22c1_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:3a888047747246743505bafd08a70e081223225601d9a6cd94801b856ed2ba84_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:65bec982ef0250c713c60c62311e290347cd9072ca82819882d91e4ed79f8d16_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/net-istio-webhook-rhel8@sha256:aaa2e335310a473df6c381774490d2c6ad00e336883be018f41b70728433e61e_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-operator-bundle@sha256:51ac9aced282f62c8fb2d3696da3696b8496d8f877e9846fe3a4a743ccd63bea_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:5ff5cf73f24c6fc856f961f3709e3c68d15c060179666a4760d083ccddce2139_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:7fd10cd70e72c0be5ca76be3cacc4781868d525579b469cffac2e75a52235cb4_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serverless-rhel8-operator@sha256:8e558e1247c8278ea1bd67cf5e4814ca349acb43b649cf1f88835bfc16eb9301_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:273f4c0db2cc41c8f7090f4a1eb0afc34f35ffaab3c69176c9260c245fabe685_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:76b5520af6d5f8499ebd13b825fbf731588e67caf0c8e8512805c6df69be6f3a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-activator-rhel8@sha256:917d5788257f3018bc70a8715e1aee3185fe93ee958deedbc3f13ffbb306c56f_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:3fca9cbb23ac5feafb6d129b1258f8b4c4d982cf1a551ad88bd537874729ac44_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:8a87b6f46cb87037d54fc1d24799617711a38ede3941f436f23014233f219c49_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-hpa-rhel8@sha256:ba07df7c30551999805eda6593ab82f5f965b05c829aa3dbf85b787e312dba5e_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:078925d012bde32da462e97e8413782533b5fcd55d95b166fd708e0b4b3874cc_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:4b810766ed033d023ce0f6b1689da91fd16433541e5c93074aee2a8fda8942ce_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-autoscaler-rhel8@sha256:81ec2edba91eba8bebd74ac7066cc12eb60da95289f88860e8b4549ccdf9ac8a_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:10eb6138e2e906ad8edcb691eb27b4b7caa9cfb33c8391bc2478b1a3c1e3a17f_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:40bffda2a73083dfb278186d23e980788d91ef1d02ab5d67ce9becb6bb15ee63_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-controller-rhel8@sha256:be4a2854ec292b9cf1d0ae8dbff765fe5d6d0fe73a526dbba6e9a256c60165ab_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:00325b9077cb6719dcaac55eb15f0822dfc00bbdcf8307c8e678ba79a17d4fb0_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:c788b9232e90fcb98c88d783655794bd7a44deb2b5323703f1a51acfba898d8c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-rhel8@sha256:fdc4600a1e8130b2d2e5bc2de95e93236ab930d27711805ab9610cdc2fd81964_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:7b1308defc8edabb10d8c6d1f6b4a05d2a1b4545a33af06943880e5824ed074c_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:b226a61fdffe6ab3e304715cd4193ccff122191934b937b484259906b9dddb5a_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-domain-mapping-webhook-rhel8@sha256:ef1c7a89eb10e51dfb677fd1a0a4e3475db5220b637b87def4a682d73e261078_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:16e45fe259a51fd8f73b9e42d8255b6dda4e2d3e00db52113308fbc99369adae_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:66199519e90664d1e9a25c29be90e0dafd36ff8fac174b5be3f7935cfdaed468_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-queue-rhel8@sha256:b209988ea641879624e144d51fba2a8de8592a72603d626952419c6ab5f7377e_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:4886e839cf374e430b6aca4036696ab934db94c78acd86240cad458625b7ea84_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:7584e95d66f6c81fdc127bfbd685da7cd6a66c4bac86395a637b21b00dbd15de_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-storage-version-migration-rhel8@sha256:c42257339c56ecf19990e9639c56c7179890b5b3d1937c1647fefccac657f903_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:244b0506701fcd91d306ec282b83c1d36d7b3421ed73eb177d0a34be237bdccc_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:b56a36112cd592bb1b28a290fc443faa1bcc997024e9d68a333f2b19af41c518_ppc64le",
"8Base-RHOSS-1.30:openshift-serverless-1/serving-webhook-rhel8@sha256:c9cf9b2ebec2d6c5bf3657666c709bed17b8e47237402012d73860ab07cff302_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:2cd50f474dafa4f24342a5c6ba46bdffadc2846ddd9e08b27e17afd576808d19_s390x",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:65e7dca03083226bfaee40bf5edcd433f0a15a3f226ee3b84a7924c56d15a979_amd64",
"8Base-RHOSS-1.30:openshift-serverless-1/svls-must-gather-rhel8@sha256:a959d8224e228b9140e79c5f9764e8318ce842f964346b3e94c33263ea48f943_ppc64le"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6298
Vulnerability from csaf_redhat - Published: 2023-11-03 08:48 - Updated: 2026-06-05 06:25Summary
Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.30.2 security update
Severity
Important
Notes
Topic: Red Hat OpenShift Serverless 1.30.2 is now available.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Serverless Client kn 1.30.2 provides a CLI to interact with Red Hat OpenShift Serverless 1.30.2. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.
This release includes security and bug fixes, and enhancements.
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (Rapid Reset Attack) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)
A Red Hat Security Bulletin which addresses further details about the Rapid Reset flaw is available in the References section.
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
38 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Serverless 1.30.2 is now available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Serverless Client kn 1.30.2 provides a CLI to interact with Red Hat OpenShift Serverless 1.30.2. The kn CLI is delivered as an RPM package for installation on RHEL platforms, and as binaries for non-Linux platforms.\n\nThis release includes security and bug fixes, and enhancements.\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (Rapid Reset Attack) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\n* golang: crypto/tls: slow verification of certificate chains containing large RSA keys (CVE-2023-29409)\n\nA Red Hat Security Bulletin which addresses further details about the Rapid Reset flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6298",
"url": "https://access.redhat.com/errata/RHSA-2023:6298"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"url": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6298.json"
}
],
"title": "Red Hat Security Advisory: Release of OpenShift Serverless Client kn 1.30.2 security update",
"tracking": {
"current_release_date": "2026-06-05T06:25:42+00:00",
"generator": {
"date": "2026-06-05T06:25:42+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6298",
"initial_release_date": "2023-11-03T08:48:21+00:00",
"revision_history": [
{
"date": "2023-11-03T08:48:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-03T08:48:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-05T06:25:42+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Serverless 1.0",
"product": {
"name": "Red Hat OpenShift Serverless 1.0",
"product_id": "8Base-Openshift-Serverless-1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:serverless:1.0::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Serverless"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-clients-0:1.9.2-4.el8.src",
"product": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.src",
"product_id": "openshift-serverless-clients-0:1.9.2-4.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-serverless-clients@1.9.2-4.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-clients-0:1.9.2-4.el8.x86_64",
"product": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.x86_64",
"product_id": "openshift-serverless-clients-0:1.9.2-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-serverless-clients@1.9.2-4.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"product": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"product_id": "openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-serverless-clients@1.9.2-4.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"product": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"product_id": "openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-serverless-clients@1.9.2-4.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.ppc64le as a component of Red Hat OpenShift Serverless 1.0",
"product_id": "8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le"
},
"product_reference": "openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"relates_to_product_reference": "8Base-Openshift-Serverless-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.s390x as a component of Red Hat OpenShift Serverless 1.0",
"product_id": "8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x"
},
"product_reference": "openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"relates_to_product_reference": "8Base-Openshift-Serverless-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.src as a component of Red Hat OpenShift Serverless 1.0",
"product_id": "8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src"
},
"product_reference": "openshift-serverless-clients-0:1.9.2-4.el8.src",
"relates_to_product_reference": "8Base-Openshift-Serverless-1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-serverless-clients-0:1.9.2-4.el8.x86_64 as a component of Red Hat OpenShift Serverless 1.0",
"product_id": "8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
},
"product_reference": "openshift-serverless-clients-0:1.9.2-4.el8.x86_64",
"relates_to_product_reference": "8Base-Openshift-Serverless-1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-03T08:48:21+00:00",
"details": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6298"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-03T08:48:21+00:00",
"details": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6298"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-03T08:48:21+00:00",
"details": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6298"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-03T08:48:21+00:00",
"details": "https://access.redhat.com/documentation/en-us/red_hat_openshift_serverless/1.30",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6298"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.ppc64le",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.s390x",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.src",
"8Base-Openshift-Serverless-1:openshift-serverless-clients-0:1.9.2-4.el8.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:6346
Vulnerability from csaf_redhat - Published: 2023-11-07 09:12 - Updated: 2026-06-04 17:41Summary
Red Hat Security Advisory: toolbox security and bug fix update
Severity
Moderate
Notes
Topic: An update for toolbox is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI.
Security Fix(es):
* go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents (CVE-2022-3064)
* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)
* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)
* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in go-yaml. This issue causes the consumption of excessive amounts of CPU or memory when attempting to parse a large or maliciously crafted YAML document.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.
9.8 (Critical)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang where angle brackets (<>) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.
7.3 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.
8.1 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, "attr={{.}}") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.
7.3 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
79 references
Acknowledgments
Catena Cyber
Philippe Antoine
Mattermost
Juho Nurminen
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for toolbox is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Toolbox is a tool for Linux operating systems, which allows the use of containerized command line environments. It is built on top of Podman and other standard container technologies from OCI.\n\nSecurity Fix(es):\n\n* go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents (CVE-2022-3064)\n\n* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\n* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)\n\n* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)\n\n* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)\n\n* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)\n\n* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)\n\n* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6346",
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index"
},
{
"category": "external",
"summary": "2163037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163037"
},
{
"category": "external",
"summary": "2165742",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2165742"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "2222789",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222789"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6346.json"
}
],
"title": "Red Hat Security Advisory: toolbox security and bug fix update",
"tracking": {
"current_release_date": "2026-06-04T17:41:30+00:00",
"generator": {
"date": "2026-06-04T17:41:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6346",
"initial_release_date": "2023-11-07T09:12:30+00:00",
"revision_history": [
{
"date": "2023-11-07T09:12:30+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-07T09:12:30+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-04T17:41:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "toolbox-0:0.0.99.4-6.el9_3.src",
"product": {
"name": "toolbox-0:0.0.99.4-6.el9_3.src",
"product_id": "toolbox-0:0.0.99.4-6.el9_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.99.4-6.el9_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "toolbox-0:0.0.99.4-6.el9_3.aarch64",
"product": {
"name": "toolbox-0:0.0.99.4-6.el9_3.aarch64",
"product_id": "toolbox-0:0.0.99.4-6.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.99.4-6.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"product": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"product_id": "toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-tests@0.0.99.4-6.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"product": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"product_id": "toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debugsource@0.0.99.4-6.el9_3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"product": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"product_id": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debuginfo@0.0.99.4-6.el9_3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"product": {
"name": "toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"product_id": "toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.99.4-6.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"product": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"product_id": "toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-tests@0.0.99.4-6.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"product": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"product_id": "toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debugsource@0.0.99.4-6.el9_3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"product": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"product_id": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debuginfo@0.0.99.4-6.el9_3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "toolbox-0:0.0.99.4-6.el9_3.x86_64",
"product": {
"name": "toolbox-0:0.0.99.4-6.el9_3.x86_64",
"product_id": "toolbox-0:0.0.99.4-6.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.99.4-6.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.x86_64",
"product": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.x86_64",
"product_id": "toolbox-tests-0:0.0.99.4-6.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-tests@0.0.99.4-6.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"product": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"product_id": "toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debugsource@0.0.99.4-6.el9_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"product": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"product_id": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debuginfo@0.0.99.4-6.el9_3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "toolbox-0:0.0.99.4-6.el9_3.s390x",
"product": {
"name": "toolbox-0:0.0.99.4-6.el9_3.s390x",
"product_id": "toolbox-0:0.0.99.4-6.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox@0.0.99.4-6.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"product": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"product_id": "toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-tests@0.0.99.4-6.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"product": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"product_id": "toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debugsource@0.0.99.4-6.el9_3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"product": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"product_id": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/toolbox-debuginfo@0.0.99.4-6.el9_3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.99.4-6.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64"
},
"product_reference": "toolbox-0:0.0.99.4-6.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.99.4-6.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le"
},
"product_reference": "toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.99.4-6.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x"
},
"product_reference": "toolbox-0:0.0.99.4-6.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.99.4-6.el9_3.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src"
},
"product_reference": "toolbox-0:0.0.99.4-6.el9_3.src",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-0:0.0.99.4-6.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64"
},
"product_reference": "toolbox-0:0.0.99.4-6.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64"
},
"product_reference": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le"
},
"product_reference": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x"
},
"product_reference": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64"
},
"product_reference": "toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64"
},
"product_reference": "toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le"
},
"product_reference": "toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x"
},
"product_reference": "toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64"
},
"product_reference": "toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64"
},
"product_reference": "toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le"
},
"product_reference": "toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x"
},
"product_reference": "toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "toolbox-tests-0:0.0.99.4-6.el9_3.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
},
"product_reference": "toolbox-tests-0:0.0.99.4-6.el9_3.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-3064",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-01-23T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2163037"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in go-yaml. This issue causes the consumption of excessive amounts of CPU or memory when attempting to parse a large or maliciously crafted YAML document.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "RHC package for Red Hat Enterprise Linux 9 mark as Low severity as we do ship the affected code but it\u0027s not easily exposed because YAML files are not parsed by RHC.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-3064"
},
{
"category": "external",
"summary": "RHBZ#2163037",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2163037"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-3064",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3064"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3064",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3064"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-6q6q-88xp-6f2r",
"url": "https://github.com/advisories/GHSA-6q6q-88xp-6f2r"
},
{
"category": "external",
"summary": "https://github.com/go-yaml/yaml/commit/f221b8435cfb71e54062f6c6e99e9ade30b124d5",
"url": "https://github.com/go-yaml/yaml/commit/f221b8435cfb71e54062f6c6e99e9ade30b124d5"
},
{
"category": "external",
"summary": "https://github.com/go-yaml/yaml/releases/tag/v2.2.4",
"url": "https://github.com/go-yaml/yaml/releases/tag/v2.2.4"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2022-0956",
"url": "https://pkg.go.dev/vuln/GO-2022-0956"
}
],
"release_date": "2022-08-29T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-yaml: Improve heuristics preventing CPU/memory abuse by parsing malicious or large YAML documents"
},
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2022-41725",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178488"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41725"
},
{
"category": "external",
"summary": "RHBZ#2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725"
},
{
"category": "external",
"summary": "https://go.dev/cl/468124",
"url": "https://go.dev/cl/468124"
},
{
"category": "external",
"summary": "https://go.dev/issue/58006",
"url": "https://go.dev/issue/58006"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1569",
"url": "https://pkg.go.dev/vuln/GO-2023-1569"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24534",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184483"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto: denial of service from excessive memory allocation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24534"
},
{
"category": "external",
"summary": "RHBZ#2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24534"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534"
},
{
"category": "external",
"summary": "https://go.dev/issue/58975",
"url": "https://go.dev/issue/58975"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto: denial of service from excessive memory allocation"
},
{
"cve": "CVE-2023-24536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184482"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses Go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not-affected.\n* The CVE refers to multipart form parsing routine mime/multipart.Reader.ReadForm, which is not used in Grafana, hence it is not-affected.\n* Butane does not parse multipart forms, hence, it is also not-affected.\nRedhat has marked this vulnerability as moderate as this vulnerability could lead to a potential denial of service when all the resource of a system is consumed which is technically not a clear case of denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24536"
},
{
"category": "external",
"summary": "RHBZ#2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536"
},
{
"category": "external",
"summary": "https://go.dev/issue/59153",
"url": "https://go.dev/issue/59153"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24538",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184481"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: backticks not treated as string delimiters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The described issue involving Go templates and JavaScript template literals poses a moderate severity rather than an important one due to several mitigating factors. Firstly, the vulnerability requires specific conditions to be met: the presence of Go templates within JavaScript template literals. This limits the scope of affected codebases, reducing the likelihood of exploitation. Additionally, the decision to disallow such interactions in future releases of Go indicates a proactive approach to addressing the issue. Furthermore, the affected packages or components within Red Hat Enterprise Linux, such as Conmon, Grafana, and the RHC package, have been assessed and determined not to be impacted due to their specific usage patterns. So the limited scope of affected systems and the absence of exploitation vectors in specific components within Red Hat Enterprise Linux contribute to categorizing the severity of the issue as moderate.\n\nFor Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* The rhc package do not make use of html/template. Hence, it is also not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24538"
},
{
"category": "external",
"summary": "RHBZ#2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59234",
"url": "https://github.com/golang/go/issues/59234"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: backticks not treated as string delimiters"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24539",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196026"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang where angle brackets (\u003c\u003e) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a \u0027/\u0027 character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper sanitization of CSS values",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore, the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24539"
},
{
"category": "external",
"summary": "RHBZ#2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59720",
"url": "https://github.com/golang/go/issues/59720"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper sanitization of CSS values"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24540",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196027"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set \"\\t\\n\\f\\r\\u0020\\u2028\\u2029\" in JavaScript contexts that also contain actions may not be properly sanitized during execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of JavaScript whitespace",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24540"
},
{
"category": "external",
"summary": "RHBZ#2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540"
},
{
"category": "external",
"summary": "https://go.dev/issue/59721",
"url": "https://go.dev/issue/59721"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of JavaScript whitespace"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-29400",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, \"attr={{.}}\") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of empty HTML attributes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn OpenShift Container Platform and Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users, reducing the impact to low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29400"
},
{
"category": "external",
"summary": "RHBZ#2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400"
},
{
"category": "external",
"summary": "https://go.dev/issue/59722",
"url": "https://go.dev/issue/59722"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of empty HTML attributes"
},
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:12:30+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6346"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.src",
"AppStream-9.3.0.GA:toolbox-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debuginfo-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-debugsource-0:0.0.99.4-6.el9_3.x86_64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.aarch64",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.ppc64le",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.s390x",
"AppStream-9.3.0.GA:toolbox-tests-0:0.0.99.4-6.el9_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
}
]
}
RHSA-2023:6363
Vulnerability from csaf_redhat - Published: 2023-11-07 08:33 - Updated: 2026-06-04 17:41Summary
Red Hat Security Advisory: skopeo security update
Severity
Moderate
Notes
Topic: An update for skopeo is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files.
Security Fix(es):
* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)
* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)
* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
* golang: go/parser: Infinite loop in parsing (CVE-2023-24537)
* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)
* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an infinite loop due to integer overflow when calling any of the Parse functions. By sending a specially crafted input, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.
9.8 (Critical)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang where angle brackets (<>) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.
7.3 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.
8.1 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, "attr={{.}}") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.
7.3 (High)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
17 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
82 references
Acknowledgments
Catena Cyber
Philippe Antoine
Mattermost
Juho Nurminen
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for skopeo is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The skopeo command lets you inspect images from container image registries, get images and image layers, and use signatures to create and verify files. \n\nSecurity Fix(es):\n\n* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\n* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)\n\n* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)\n\n* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)\n\n* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)\n\n* golang: go/parser: Infinite loop in parsing (CVE-2023-24537)\n\n* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)\n\n* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)\n\n* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6363",
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "2184484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184484"
},
{
"category": "external",
"summary": "2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6363.json"
}
],
"title": "Red Hat Security Advisory: skopeo security update",
"tracking": {
"current_release_date": "2026-06-04T17:41:30+00:00",
"generator": {
"date": "2026-06-04T17:41:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6363",
"initial_release_date": "2023-11-07T08:33:26+00:00",
"revision_history": [
{
"date": "2023-11-07T08:33:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-07T08:33:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-04T17:41:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.13.3-1.el9.src",
"product": {
"name": "skopeo-2:1.13.3-1.el9.src",
"product_id": "skopeo-2:1.13.3-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.13.3-1.el9?arch=src\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.13.3-1.el9.aarch64",
"product": {
"name": "skopeo-2:1.13.3-1.el9.aarch64",
"product_id": "skopeo-2:1.13.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.13.3-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.13.3-1.el9.aarch64",
"product": {
"name": "skopeo-tests-2:1.13.3-1.el9.aarch64",
"product_id": "skopeo-tests-2:1.13.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.13.3-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"product": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"product_id": "skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.13.3-1.el9?arch=aarch64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"product": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"product_id": "skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.13.3-1.el9?arch=aarch64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.13.3-1.el9.ppc64le",
"product": {
"name": "skopeo-2:1.13.3-1.el9.ppc64le",
"product_id": "skopeo-2:1.13.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.13.3-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.13.3-1.el9.ppc64le",
"product": {
"name": "skopeo-tests-2:1.13.3-1.el9.ppc64le",
"product_id": "skopeo-tests-2:1.13.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.13.3-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"product": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"product_id": "skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.13.3-1.el9?arch=ppc64le\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"product": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"product_id": "skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.13.3-1.el9?arch=ppc64le\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.13.3-1.el9.x86_64",
"product": {
"name": "skopeo-2:1.13.3-1.el9.x86_64",
"product_id": "skopeo-2:1.13.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.13.3-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.13.3-1.el9.x86_64",
"product": {
"name": "skopeo-tests-2:1.13.3-1.el9.x86_64",
"product_id": "skopeo-tests-2:1.13.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.13.3-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"product": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"product_id": "skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.13.3-1.el9?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"product": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"product_id": "skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.13.3-1.el9?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "skopeo-2:1.13.3-1.el9.s390x",
"product": {
"name": "skopeo-2:1.13.3-1.el9.s390x",
"product_id": "skopeo-2:1.13.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo@1.13.3-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-tests-2:1.13.3-1.el9.s390x",
"product": {
"name": "skopeo-tests-2:1.13.3-1.el9.s390x",
"product_id": "skopeo-tests-2:1.13.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-tests@1.13.3-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debugsource-2:1.13.3-1.el9.s390x",
"product": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.s390x",
"product_id": "skopeo-debugsource-2:1.13.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debugsource@1.13.3-1.el9?arch=s390x\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"product": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"product_id": "skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/skopeo-debuginfo@1.13.3-1.el9?arch=s390x\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.13.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64"
},
"product_reference": "skopeo-2:1.13.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.13.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le"
},
"product_reference": "skopeo-2:1.13.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.13.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x"
},
"product_reference": "skopeo-2:1.13.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.13.3-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src"
},
"product_reference": "skopeo-2:1.13.3-1.el9.src",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-2:1.13.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64"
},
"product_reference": "skopeo-2:1.13.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64"
},
"product_reference": "skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le"
},
"product_reference": "skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x"
},
"product_reference": "skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debuginfo-2:1.13.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64"
},
"product_reference": "skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64"
},
"product_reference": "skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le"
},
"product_reference": "skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x"
},
"product_reference": "skopeo-debugsource-2:1.13.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-debugsource-2:1.13.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64"
},
"product_reference": "skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.13.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64"
},
"product_reference": "skopeo-tests-2:1.13.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.13.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le"
},
"product_reference": "skopeo-tests-2:1.13.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.13.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x"
},
"product_reference": "skopeo-tests-2:1.13.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "skopeo-tests-2:1.13.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
},
"product_reference": "skopeo-tests-2:1.13.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2022-41724",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178492"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: large handshake records may cause panics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a denial of service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41724"
},
{
"category": "external",
"summary": "RHBZ#2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41724"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724"
},
{
"category": "external",
"summary": "https://go.dev/cl/468125",
"url": "https://go.dev/cl/468125"
},
{
"category": "external",
"summary": "https://go.dev/issue/58001",
"url": "https://go.dev/issue/58001"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1570",
"url": "https://pkg.go.dev/vuln/GO-2023-1570"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: large handshake records may cause panics"
},
{
"cve": "CVE-2022-41725",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178488"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41725"
},
{
"category": "external",
"summary": "RHBZ#2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725"
},
{
"category": "external",
"summary": "https://go.dev/cl/468124",
"url": "https://go.dev/cl/468124"
},
{
"category": "external",
"summary": "https://go.dev/issue/58006",
"url": "https://go.dev/issue/58006"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1569",
"url": "https://pkg.go.dev/vuln/GO-2023-1569"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24534",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184483"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto: denial of service from excessive memory allocation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24534"
},
{
"category": "external",
"summary": "RHBZ#2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24534"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534"
},
{
"category": "external",
"summary": "https://go.dev/issue/58975",
"url": "https://go.dev/issue/58975"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto: denial of service from excessive memory allocation"
},
{
"cve": "CVE-2023-24536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184482"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses Go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not-affected.\n* The CVE refers to multipart form parsing routine mime/multipart.Reader.ReadForm, which is not used in Grafana, hence it is not-affected.\n* Butane does not parse multipart forms, hence, it is also not-affected.\nRedhat has marked this vulnerability as moderate as this vulnerability could lead to a potential denial of service when all the resource of a system is consumed which is technically not a clear case of denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24536"
},
{
"category": "external",
"summary": "RHBZ#2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536"
},
{
"category": "external",
"summary": "https://go.dev/issue/59153",
"url": "https://go.dev/issue/59153"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24537",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184484"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an infinite loop due to integer overflow when calling any of the Parse functions. By sending a specially crafted input, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: go/parser: Infinite loop in parsing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability has been rated Moderate because it allows denial of service condition in Go\u2019s source code parser when processing specially crafted input containing //line directives with excessively large line numbers. Exploitation can cause the parser to enter an infinite loop, consuming CPU resources and rendering services unresponsive. While this issue does not permit code execution or data access, it poses a significant availability impact for systems processing untrusted Go source input.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24537"
},
{
"category": "external",
"summary": "RHBZ#2184484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184484"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24537",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24537"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24537",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24537"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59180",
"url": "https://github.com/golang/go/issues/59180"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "To mitigate this issue, upgrade Go to version 1.19.8, 1.20.3, or later, where the vulnerability has been addressed.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: go/parser: Infinite loop in parsing"
},
{
"cve": "CVE-2023-24538",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184481"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: backticks not treated as string delimiters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The described issue involving Go templates and JavaScript template literals poses a moderate severity rather than an important one due to several mitigating factors. Firstly, the vulnerability requires specific conditions to be met: the presence of Go templates within JavaScript template literals. This limits the scope of affected codebases, reducing the likelihood of exploitation. Additionally, the decision to disallow such interactions in future releases of Go indicates a proactive approach to addressing the issue. Furthermore, the affected packages or components within Red Hat Enterprise Linux, such as Conmon, Grafana, and the RHC package, have been assessed and determined not to be impacted due to their specific usage patterns. So the limited scope of affected systems and the absence of exploitation vectors in specific components within Red Hat Enterprise Linux contribute to categorizing the severity of the issue as moderate.\n\nFor Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* The rhc package do not make use of html/template. Hence, it is also not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24538"
},
{
"category": "external",
"summary": "RHBZ#2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59234",
"url": "https://github.com/golang/go/issues/59234"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: backticks not treated as string delimiters"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24539",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196026"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang where angle brackets (\u003c\u003e) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a \u0027/\u0027 character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper sanitization of CSS values",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore, the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24539"
},
{
"category": "external",
"summary": "RHBZ#2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59720",
"url": "https://github.com/golang/go/issues/59720"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper sanitization of CSS values"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24540",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196027"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set \"\\t\\n\\f\\r\\u0020\\u2028\\u2029\" in JavaScript contexts that also contain actions may not be properly sanitized during execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of JavaScript whitespace",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24540"
},
{
"category": "external",
"summary": "RHBZ#2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540"
},
{
"category": "external",
"summary": "https://go.dev/issue/59721",
"url": "https://go.dev/issue/59721"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of JavaScript whitespace"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-29400",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, \"attr={{.}}\") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of empty HTML attributes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn OpenShift Container Platform and Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users, reducing the impact to low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29400"
},
{
"category": "external",
"summary": "RHBZ#2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400"
},
{
"category": "external",
"summary": "https://go.dev/issue/59722",
"url": "https://go.dev/issue/59722"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of empty HTML attributes"
},
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:33:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6363"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.src",
"AppStream-9.3.0.GA:skopeo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debuginfo-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-debugsource-2:1.13.3-1.el9.x86_64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.aarch64",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.s390x",
"AppStream-9.3.0.GA:skopeo-tests-2:1.13.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
}
]
}
RHSA-2023:6402
Vulnerability from csaf_redhat - Published: 2023-11-07 09:01 - Updated: 2026-06-04 17:41Summary
Red Hat Security Advisory: containernetworking-plugins security and bug fix update
Severity
Moderate
Notes
Topic: An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The Container Network Interface (CNI) project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted.
Security Fix(es):
* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)
* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)
* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)
* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.
7.5 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.
9.8 (Critical)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang where angle brackets (<>) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.
7.3 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.
8.1 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, "attr={{.}}") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.
7.3 (High)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
13 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
77 references
Acknowledgments
Catena Cyber
Philippe Antoine
Mattermost
Juho Nurminen
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for containernetworking-plugins is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Container Network Interface (CNI) project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated resources when the container is deleted. \n\nSecurity Fix(es):\n\n* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\n* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)\n\n* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)\n\n* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)\n\n* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)\n\n* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)\n\n* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)\n\n* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6402",
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "2212143",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2212143"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6402.json"
}
],
"title": "Red Hat Security Advisory: containernetworking-plugins security and bug fix update",
"tracking": {
"current_release_date": "2026-06-04T17:41:30+00:00",
"generator": {
"date": "2026-06-04T17:41:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6402",
"initial_release_date": "2023-11-07T09:01:07+00:00",
"revision_history": [
{
"date": "2023-11-07T09:01:07+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-07T09:01:07+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-04T17:41:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.3.0-4.el9.src",
"product": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.src",
"product_id": "containernetworking-plugins-1:1.3.0-4.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.3.0-4.el9?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"product": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"product_id": "containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.3.0-4.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"product_id": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.3.0-4.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"product_id": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.3.0-4.el9?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"product": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"product_id": "containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.3.0-4.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"product_id": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.3.0-4.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"product_id": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.3.0-4.el9?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"product": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"product_id": "containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.3.0-4.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64",
"product_id": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.3.0-4.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"product_id": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.3.0-4.el9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "containernetworking-plugins-1:1.3.0-4.el9.s390x",
"product": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.s390x",
"product_id": "containernetworking-plugins-1:1.3.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins@1.3.0-4.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"product": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"product_id": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debugsource@1.3.0-4.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"product": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"product_id": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/containernetworking-plugins-debuginfo@1.3.0-4.el9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64"
},
"product_reference": "containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le"
},
"product_reference": "containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x"
},
"product_reference": "containernetworking-plugins-1:1.3.0-4.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src"
},
"product_reference": "containernetworking-plugins-1:1.3.0-4.el9.src",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-1:1.3.0-4.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64"
},
"product_reference": "containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64"
},
"product_reference": "containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
},
"product_reference": "containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2022-41724",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178492"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: large handshake records may cause panics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a denial of service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41724"
},
{
"category": "external",
"summary": "RHBZ#2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41724"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724"
},
{
"category": "external",
"summary": "https://go.dev/cl/468125",
"url": "https://go.dev/cl/468125"
},
{
"category": "external",
"summary": "https://go.dev/issue/58001",
"url": "https://go.dev/issue/58001"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1570",
"url": "https://pkg.go.dev/vuln/GO-2023-1570"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: large handshake records may cause panics"
},
{
"cve": "CVE-2022-41725",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178488"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41725"
},
{
"category": "external",
"summary": "RHBZ#2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725"
},
{
"category": "external",
"summary": "https://go.dev/cl/468124",
"url": "https://go.dev/cl/468124"
},
{
"category": "external",
"summary": "https://go.dev/issue/58006",
"url": "https://go.dev/issue/58006"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1569",
"url": "https://pkg.go.dev/vuln/GO-2023-1569"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24534",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184483"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto: denial of service from excessive memory allocation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24534"
},
{
"category": "external",
"summary": "RHBZ#2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24534"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534"
},
{
"category": "external",
"summary": "https://go.dev/issue/58975",
"url": "https://go.dev/issue/58975"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto: denial of service from excessive memory allocation"
},
{
"cve": "CVE-2023-24536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184482"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses Go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not-affected.\n* The CVE refers to multipart form parsing routine mime/multipart.Reader.ReadForm, which is not used in Grafana, hence it is not-affected.\n* Butane does not parse multipart forms, hence, it is also not-affected.\nRedhat has marked this vulnerability as moderate as this vulnerability could lead to a potential denial of service when all the resource of a system is consumed which is technically not a clear case of denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24536"
},
{
"category": "external",
"summary": "RHBZ#2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536"
},
{
"category": "external",
"summary": "https://go.dev/issue/59153",
"url": "https://go.dev/issue/59153"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24538",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184481"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: backticks not treated as string delimiters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The described issue involving Go templates and JavaScript template literals poses a moderate severity rather than an important one due to several mitigating factors. Firstly, the vulnerability requires specific conditions to be met: the presence of Go templates within JavaScript template literals. This limits the scope of affected codebases, reducing the likelihood of exploitation. Additionally, the decision to disallow such interactions in future releases of Go indicates a proactive approach to addressing the issue. Furthermore, the affected packages or components within Red Hat Enterprise Linux, such as Conmon, Grafana, and the RHC package, have been assessed and determined not to be impacted due to their specific usage patterns. So the limited scope of affected systems and the absence of exploitation vectors in specific components within Red Hat Enterprise Linux contribute to categorizing the severity of the issue as moderate.\n\nFor Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* The rhc package do not make use of html/template. Hence, it is also not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24538"
},
{
"category": "external",
"summary": "RHBZ#2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59234",
"url": "https://github.com/golang/go/issues/59234"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: backticks not treated as string delimiters"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24539",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196026"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang where angle brackets (\u003c\u003e) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a \u0027/\u0027 character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper sanitization of CSS values",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore, the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24539"
},
{
"category": "external",
"summary": "RHBZ#2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59720",
"url": "https://github.com/golang/go/issues/59720"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper sanitization of CSS values"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24540",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196027"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set \"\\t\\n\\f\\r\\u0020\\u2028\\u2029\" in JavaScript contexts that also contain actions may not be properly sanitized during execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of JavaScript whitespace",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24540"
},
{
"category": "external",
"summary": "RHBZ#2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540"
},
{
"category": "external",
"summary": "https://go.dev/issue/59721",
"url": "https://go.dev/issue/59721"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of JavaScript whitespace"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-29400",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, \"attr={{.}}\") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of empty HTML attributes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn OpenShift Container Platform and Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users, reducing the impact to low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29400"
},
{
"category": "external",
"summary": "RHBZ#2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400"
},
{
"category": "external",
"summary": "https://go.dev/issue/59722",
"url": "https://go.dev/issue/59722"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of empty HTML attributes"
},
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T09:01:07+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6402"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.src",
"AppStream-9.3.0.GA:containernetworking-plugins-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debuginfo-1:1.3.0-4.el9.x86_64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.aarch64",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.ppc64le",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.s390x",
"AppStream-9.3.0.GA:containernetworking-plugins-debugsource-1:1.3.0-4.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
}
]
}
RHSA-2023:6473
Vulnerability from csaf_redhat - Published: 2023-11-07 08:39 - Updated: 2026-06-04 17:41Summary
Red Hat Security Advisory: buildah security update
Severity
Moderate
Notes
Topic: An update for buildah is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images.
Security Fix(es):
* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)
* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)
* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)
* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)
* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)
* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)
* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)
* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)
* containerd: Supplementary groups are not set up properly (CVE-2023-25173)
* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)
* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional Changes:
For detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.
7.5 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.
7.5 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.
7.5 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.
7.5 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.
9.8 (Critical)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang where angle brackets (<>) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a '/' character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.
7.3 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set "\t\n\f\r\u0020\u2028\u2029" in JavaScript contexts that also contain actions may not be properly sanitized during execution.
8.1 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in containerd, where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases. This issue can allow access to sensitive information or gain the ability to execute code in that container.
7.3 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, "attr={{.}}") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.
7.3 (High)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Moderate
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
21 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
References
86 references
Acknowledgments
Catena Cyber
Philippe Antoine
Mattermost
Juho Nurminen
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for buildah is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a Dockerfile; Build both Docker and OCI images. \n\nSecurity Fix(es):\n\n* golang: html/template: improper handling of JavaScript whitespace (CVE-2023-24540)\n\n* net/http, golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding (CVE-2022-41723)\n\n* golang: crypto/tls: large handshake records may cause panics (CVE-2022-41724)\n\n* golang: net/http, mime/multipart: denial of service from excessive resource consumption (CVE-2022-41725)\n\n* golang: net/http, net/textproto: denial of service from excessive memory allocation (CVE-2023-24534)\n\n* golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption (CVE-2023-24536)\n\n* golang: html/template: backticks not treated as string delimiters (CVE-2023-24538)\n\n* golang: html/template: improper sanitization of CSS values (CVE-2023-24539)\n\n* containerd: Supplementary groups are not set up properly (CVE-2023-25173)\n\n* golang: html/template: improper handling of empty HTML attributes (CVE-2023-29400)\n\n* golang: net/http: insufficient sanitization of Host header (CVE-2023-29406)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 9.3 Release Notes linked from the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:6473",
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/9/html/9.3_release_notes/index"
},
{
"category": "external",
"summary": "2174485",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2174485"
},
{
"category": "external",
"summary": "2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_6473.json"
}
],
"title": "Red Hat Security Advisory: buildah security update",
"tracking": {
"current_release_date": "2026-06-04T17:41:30+00:00",
"generator": {
"date": "2026-06-04T17:41:30+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:6473",
"initial_release_date": "2023-11-07T08:39:45+00:00",
"revision_history": [
{
"date": "2023-11-07T08:39:45+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-11-07T08:39:45+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-04T17:41:30+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.31.3-1.el9.src",
"product": {
"name": "buildah-1:1.31.3-1.el9.src",
"product_id": "buildah-1:1.31.3-1.el9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.31.3-1.el9?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.31.3-1.el9.aarch64",
"product": {
"name": "buildah-1:1.31.3-1.el9.aarch64",
"product_id": "buildah-1:1.31.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.31.3-1.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.31.3-1.el9.aarch64",
"product": {
"name": "buildah-tests-1:1.31.3-1.el9.aarch64",
"product_id": "buildah-tests-1:1.31.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.31.3-1.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.31.3-1.el9.aarch64",
"product": {
"name": "buildah-debugsource-1:1.31.3-1.el9.aarch64",
"product_id": "buildah-debugsource-1:1.31.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.31.3-1.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"product": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"product_id": "buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.31.3-1.el9?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"product": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"product_id": "buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.31.3-1.el9?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.31.3-1.el9.ppc64le",
"product": {
"name": "buildah-1:1.31.3-1.el9.ppc64le",
"product_id": "buildah-1:1.31.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.31.3-1.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.31.3-1.el9.ppc64le",
"product": {
"name": "buildah-tests-1:1.31.3-1.el9.ppc64le",
"product_id": "buildah-tests-1:1.31.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.31.3-1.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"product": {
"name": "buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"product_id": "buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.31.3-1.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"product": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"product_id": "buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.31.3-1.el9?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"product": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"product_id": "buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.31.3-1.el9?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.31.3-1.el9.x86_64",
"product": {
"name": "buildah-1:1.31.3-1.el9.x86_64",
"product_id": "buildah-1:1.31.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.31.3-1.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.31.3-1.el9.x86_64",
"product": {
"name": "buildah-tests-1:1.31.3-1.el9.x86_64",
"product_id": "buildah-tests-1:1.31.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.31.3-1.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.31.3-1.el9.x86_64",
"product": {
"name": "buildah-debugsource-1:1.31.3-1.el9.x86_64",
"product_id": "buildah-debugsource-1:1.31.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.31.3-1.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"product": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"product_id": "buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.31.3-1.el9?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64",
"product": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64",
"product_id": "buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.31.3-1.el9?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "buildah-1:1.31.3-1.el9.s390x",
"product": {
"name": "buildah-1:1.31.3-1.el9.s390x",
"product_id": "buildah-1:1.31.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah@1.31.3-1.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-1:1.31.3-1.el9.s390x",
"product": {
"name": "buildah-tests-1:1.31.3-1.el9.s390x",
"product_id": "buildah-tests-1:1.31.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests@1.31.3-1.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debugsource-1:1.31.3-1.el9.s390x",
"product": {
"name": "buildah-debugsource-1:1.31.3-1.el9.s390x",
"product_id": "buildah-debugsource-1:1.31.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debugsource@1.31.3-1.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-debuginfo-1:1.31.3-1.el9.s390x",
"product": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.s390x",
"product_id": "buildah-debuginfo-1:1.31.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-debuginfo@1.31.3-1.el9?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"product": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"product_id": "buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/buildah-tests-debuginfo@1.31.3-1.el9?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.31.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64"
},
"product_reference": "buildah-1:1.31.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.31.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le"
},
"product_reference": "buildah-1:1.31.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.31.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x"
},
"product_reference": "buildah-1:1.31.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.31.3-1.el9.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src"
},
"product_reference": "buildah-1:1.31.3-1.el9.src",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-1:1.31.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64"
},
"product_reference": "buildah-1:1.31.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64"
},
"product_reference": "buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le"
},
"product_reference": "buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x"
},
"product_reference": "buildah-debuginfo-1:1.31.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debuginfo-1:1.31.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64"
},
"product_reference": "buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.31.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64"
},
"product_reference": "buildah-debugsource-1:1.31.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.31.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le"
},
"product_reference": "buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.31.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x"
},
"product_reference": "buildah-debugsource-1:1.31.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-debugsource-1:1.31.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64"
},
"product_reference": "buildah-debugsource-1:1.31.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.31.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64"
},
"product_reference": "buildah-tests-1:1.31.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.31.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le"
},
"product_reference": "buildah-tests-1:1.31.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.31.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x"
},
"product_reference": "buildah-tests-1:1.31.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-1:1.31.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64"
},
"product_reference": "buildah-tests-1:1.31.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64"
},
"product_reference": "buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le"
},
"product_reference": "buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x"
},
"product_reference": "buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"relates_to_product_reference": "AppStream-9.3.0.GA"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
},
"product_reference": "buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64",
"relates_to_product_reference": "AppStream-9.3.0.GA"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"Philippe Antoine"
],
"organization": "Catena Cyber"
}
],
"cve": "CVE-2022-41723",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-14T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178358"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. A maliciously crafted HTTP/2 stream could cause excessive CPU consumption in the HPACK decoder, sufficient to cause a denial of service from a small number of requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within OpenShift Container Platform, the maximum impact of this vulnerability is a denial of service against an individual container so the impact could not cascade across the entire infrastructure, this vulnerability is rated Moderate impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41723"
},
{
"category": "external",
"summary": "RHBZ#2178358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178358"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41723",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41723"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41723"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h",
"url": "https://github.com/advisories/GHSA-vvpx-j8f3-3w6h"
},
{
"category": "external",
"summary": "https://go.dev/cl/468135",
"url": "https://go.dev/cl/468135"
},
{
"category": "external",
"summary": "https://go.dev/cl/468295",
"url": "https://go.dev/cl/468295"
},
{
"category": "external",
"summary": "https://go.dev/issue/57855",
"url": "https://go.dev/issue/57855"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1571",
"url": "https://pkg.go.dev/vuln/GO-2023-1571"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2023-1571.json",
"url": "https://vuln.go.dev/ID/GO-2023-1571.json"
}
],
"release_date": "2023-02-17T14:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang.org/x/net/http2: avoid quadratic complexity in HPACK decoding"
},
{
"cve": "CVE-2022-41724",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178492"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused when processing large TLS handshake records. By sending specially-crafted TLS handshake records, a remote, authenticated attacker can cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: large handshake records may cause panics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a denial of service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41724"
},
{
"category": "external",
"summary": "RHBZ#2178492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178492"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41724",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41724"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41724"
},
{
"category": "external",
"summary": "https://go.dev/cl/468125",
"url": "https://go.dev/cl/468125"
},
{
"category": "external",
"summary": "https://go.dev/issue/58001",
"url": "https://go.dev/issue/58001"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1570",
"url": "https://pkg.go.dev/vuln/GO-2023-1570"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: large handshake records may cause panics"
},
{
"cve": "CVE-2022-41725",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-03-15T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2178488"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go, where it is vulnerable to a denial of service caused by an excessive resource consumption flaw in the net/http and mime/multipart packages. By sending a specially-crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The opportunity for a Denial of Service is limited to the golang runtime. In the case of the OpenShift Container Platform, this would be restricted within each individual container. There are multiple layers of guide rails (Golang\u2019s Garbage Collector; OpenShift\u2019s resource constraints imposed at the container and cluster levels) which would require a malicious user to continue submitting attacks for there to be any enduring impact. They would also need access to external server resources to be able to send a massive volume of requests to cause a significant impact on server operations.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2022-41725"
},
{
"category": "external",
"summary": "RHBZ#2178488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2178488"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2022-41725",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-41725"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-41725"
},
{
"category": "external",
"summary": "https://go.dev/cl/468124",
"url": "https://go.dev/cl/468124"
},
{
"category": "external",
"summary": "https://go.dev/issue/58006",
"url": "https://go.dev/issue/58006"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E",
"url": "https://groups.google.com/g/golang-announce/c/V0aBFqaFs_E"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1569",
"url": "https://pkg.go.dev/vuln/GO-2023-1569"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24534",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184483"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by memory exhaustion in the common function in HTTP and MIME header parsing. By sending a specially crafted request, a remote attacker can cause a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto: denial of service from excessive memory allocation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24534"
},
{
"category": "external",
"summary": "RHBZ#2184483",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184483"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24534",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24534"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24534"
},
{
"category": "external",
"summary": "https://go.dev/issue/58975",
"url": "https://go.dev/issue/58975"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto: denial of service from excessive memory allocation"
},
{
"cve": "CVE-2023-24536",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184482"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go, where it is vulnerable to a denial of service caused by an issue during multipart form parsing. By sending a specially crafted input, a remote attacker can consume large amounts of CPU and memory, resulting in a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses Go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not-affected.\n* The CVE refers to multipart form parsing routine mime/multipart.Reader.ReadForm, which is not used in Grafana, hence it is not-affected.\n* Butane does not parse multipart forms, hence, it is also not-affected.\nRedhat has marked this vulnerability as moderate as this vulnerability could lead to a potential denial of service when all the resource of a system is consumed which is technically not a clear case of denial of service.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24536"
},
{
"category": "external",
"summary": "RHBZ#2184482",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184482"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24536"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24536"
},
{
"category": "external",
"summary": "https://go.dev/issue/59153",
"url": "https://go.dev/issue/59153"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http, net/textproto, mime/multipart: denial of service from excessive resource consumption"
},
{
"cve": "CVE-2023-24538",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"discovery_date": "2023-04-04T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2184481"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang Go. This flaw allows a remote attacker to execute arbitrary code on the system, caused by not properly considering backticks (`) as Javascript string delimiters. By sending a specially crafted request, an attacker execute arbitrary code on the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: backticks not treated as string delimiters",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The described issue involving Go templates and JavaScript template literals poses a moderate severity rather than an important one due to several mitigating factors. Firstly, the vulnerability requires specific conditions to be met: the presence of Go templates within JavaScript template literals. This limits the scope of affected codebases, reducing the likelihood of exploitation. Additionally, the decision to disallow such interactions in future releases of Go indicates a proactive approach to addressing the issue. Furthermore, the affected packages or components within Red Hat Enterprise Linux, such as Conmon, Grafana, and the RHC package, have been assessed and determined not to be impacted due to their specific usage patterns. So the limited scope of affected systems and the absence of exploitation vectors in specific components within Red Hat Enterprise Linux contribute to categorizing the severity of the issue as moderate.\n\nFor Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* The rhc package do not make use of html/template. Hence, it is also not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24538"
},
{
"category": "external",
"summary": "RHBZ#2184481",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2184481"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24538"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24538"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59234",
"url": "https://github.com/golang/go/issues/59234"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8",
"url": "https://groups.google.com/g/golang-announce/c/Xdv6JL9ENs8"
}
],
"release_date": "2023-04-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: backticks not treated as string delimiters"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24539",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196026"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang where angle brackets (\u003c\u003e) were not considered dangerous characters when inserted into CSS contexts. Templates containing multiple actions separated by a \u0027/\u0027 character could result in the CSS context unexpectedly closing, allowing for the injection of unexpected HMTL if executed with untrusted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper sanitization of CSS values",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore, the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24539"
},
{
"category": "external",
"summary": "RHBZ#2196026",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196026"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24539",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24539"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24539"
},
{
"category": "external",
"summary": "https://github.com/golang/go/issues/59720",
"url": "https://github.com/golang/go/issues/59720"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper sanitization of CSS values"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-24540",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196027"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang, where not all valid JavaScript white-space characters were considered white space. Due to this issue, templates containing white-space characters outside of the character set \"\\t\\n\\f\\r\\u0020\\u2028\\u2029\" in JavaScript contexts that also contain actions may not be properly sanitized during execution.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of JavaScript whitespace",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, hence, not in the actual code, thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn Red Hat Advanced Cluster Management for Kubernetes (RHACM) the affected containers are behind OpenShift OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users only, therefore the impact is low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-24540"
},
{
"category": "external",
"summary": "RHBZ#2196027",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196027"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-24540",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24540"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-24540"
},
{
"category": "external",
"summary": "https://go.dev/issue/59721",
"url": "https://go.dev/issue/59721"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of JavaScript whitespace"
},
{
"cve": "CVE-2023-25173",
"cwe": {
"id": "CWE-842",
"name": "Placement of User into Incorrect Group"
},
"discovery_date": "2023-03-01T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2174485"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in containerd, where supplementary groups are not set up properly inside a container. If an attacker has direct access to a container and manipulates their supplementary group access, they may be able to use supplementary group access to bypass primary group restrictions in some cases. This issue can allow access to sensitive information or gain the ability to execute code in that container.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "containerd: Supplementary groups are not set up properly",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The following products include containerd related code, but do not use the specific Go packages impacted by this CVE, `containerd/cri/server` and `containerd/oci`. This CVE is therefore rated Low for these products:\n\n* OpenShift Container Platform\n* OpenShift Service Mesh\n* OpenShift API for Data Protection\n* Red Hat Advanced Cluster Security\n* Red Hat Advanced Cluster Management for Kubernetes",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-25173"
},
{
"category": "external",
"summary": "RHBZ#2174485",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2174485"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-25173",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-25173"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-25173",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-25173"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/commit/133f6bb6cd827ce35a5fb279c1ead12b9d21460a",
"url": "https://github.com/containerd/containerd/commit/133f6bb6cd827ce35a5fb279c1ead12b9d21460a"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/releases/tag/v1.5.18",
"url": "https://github.com/containerd/containerd/releases/tag/v1.5.18"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/releases/tag/v1.6.18",
"url": "https://github.com/containerd/containerd/releases/tag/v1.6.18"
},
{
"category": "external",
"summary": "https://github.com/containerd/containerd/security/advisories/GHSA-hmfx-3pcx-653p",
"url": "https://github.com/containerd/containerd/security/advisories/GHSA-hmfx-3pcx-653p"
},
{
"category": "external",
"summary": "https://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/",
"url": "https://www.benthamsgaze.org/2022/08/22/vulnerability-in-linux-containers-investigation-and-mitigation/"
}
],
"release_date": "2023-02-15T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "containerd: Supplementary groups are not set up properly"
},
{
"acknowledgments": [
{
"names": [
"Juho Nurminen"
],
"organization": "Mattermost"
}
],
"cve": "CVE-2023-29400",
"cwe": {
"id": "CWE-176",
"name": "Improper Handling of Unicode Encoding"
},
"discovery_date": "2023-05-07T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2196029"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in golang. Templates containing actions in unquoted HTML attributes, for example, \"attr={{.}}\") executed with empty input, could result in output that has unexpected results when parsed due to HTML normalization rules. This issue may allow the injection of arbitrary attributes into tags.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: improper handling of empty HTML attributes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For Red Hat Enterprise Linux,\n\n* Conmon uses go in unit testing, but not functionally in the package. Go is used only in test files, not in the actual code. Thus, conmon is not affected.\n* The Go templates in Grafana do not contain any javascript. Thus, it is not affected.\n* Ignition does not make use of html/template.\n\nIn OpenShift Container Platform and Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected containers are behind OAuth authentication. This restricts access to the vulnerable golang html/templates to authenticated users, reducing the impact to low.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29400"
},
{
"category": "external",
"summary": "RHBZ#2196029",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2196029"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29400",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29400"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29400"
},
{
"category": "external",
"summary": "https://go.dev/issue/59722",
"url": "https://go.dev/issue/59722"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU",
"url": "https://groups.google.com/g/golang-announce/c/MEb0UyuSMsU"
}
],
"release_date": "2023-04-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability.",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: improper handling of empty HTML attributes"
},
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-11-07T08:39:45+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:6473"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.src",
"AppStream-9.3.0.GA:buildah-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debuginfo-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-debugsource-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-1:1.31.3-1.el9.x86_64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.aarch64",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.ppc64le",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.s390x",
"AppStream-9.3.0.GA:buildah-tests-debuginfo-1:1.31.3-1.el9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…