Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-44487 (GCVE-0-2023-44487)
Vulnerability from cvelistv5 – Published: 2023-10-10 00:00 – Updated: 2026-05-12 10:52
VLAI
EPSS
CISA KEV
Summary
The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.
Severity
7.5 (High)
SSVC
Exploitation: active
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- n/a
- CWE-400 - Uncontrolled Resource Consumption
Assigner
References
173 references
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| ietf | http |
Affected:
2.0
cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:* |
|
| Siemens | RUGGEDCOM APE1808 |
Affected:
0 , < *
(custom)
|
|
| Siemens | SIMATIC S7-1500 CPU 1518-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
|
| Siemens | SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
|
| Siemens | SINEC NMS |
Affected:
0 , < V3.0
(custom)
|
|
| Siemens | SIPLUS S7-1500 CPU 1518-4 PN/DP MFP |
Affected:
V3.1.5 , < *
(custom)
|
CISA KEV
Known Exploited Vulnerability - GCVE BCP-07 Compliant
KEV entry ID: 6386c9c4-033b-4ac4-b69d-cdc0288bae9a
Exploited: Yes
Timestamps
First Seen: 2023-10-10
Asserted: 2023-10-10
Scope
Notes: KEV entry: HTTP/2 Rapid Reset Attack Vulnerability | Affected: IETF / HTTP/2 | Description: HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS). | Required action: Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable. | Due date: 2023-10-31 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): This vulnerability affects a common open-source component, third-party library, or protocol used by different products. For more information, please see: HTTP/2 Rapid Reset Vulnerability, CVE-2023-44487 | CISA: https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487; https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/; https://nvd.nist.gov/vuln/detail/CVE-2023-44487
Evidence
Type: Vendor Report
Signal: Successful Exploitation
Confidence: 80%
Source: cisa-kev
Details
| Cwes | CWE-400 |
|---|---|
| Feed | CISA Known Exploited Vulnerabilities Catalog |
| Product | HTTP/2 |
| Due Date | 2023-10-31 |
| Date Added | 2023-10-10 |
| Vendorproject | IETF |
| Vulnerabilityname | HTTP/2 Rapid Reset Attack Vulnerability |
| Knownransomwarecampaignuse | Unknown |
References
Created: 2026-02-02 13:24 UTC
| Updated: 2026-02-06 07:53 UTC
{
"containers": {
"adp": [
{
"affected": [
{
"cpes": [
"cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "http",
"vendor": "ietf",
"versions": [
{
"status": "affected",
"version": "2.0"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-44487",
"options": [
{
"Exploitation": "active"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-07-23T20:34:21.334116Z",
"version": "2.0.3"
},
"type": "ssvc"
}
},
{
"other": {
"content": {
"dateAdded": "2023-10-10",
"reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487"
},
"type": "kev"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400 Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-10-21T23:05:35.187Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"references": [
{
"tags": [
"government-resource"
],
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487"
}
],
"timeline": [
{
"lang": "en",
"time": "2023-10-10T00:00:00.000Z",
"value": "CVE-2023-44487 added to CISA KEV"
}
],
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-04T21:08:27.383Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73"
},
{
"tags": [
"x_transferred"
],
"url": "https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/"
},
{
"tags": [
"x_transferred"
],
"url": "https://aws.amazon.com/security/security-bulletins/AWS-2023-011/"
},
{
"tags": [
"x_transferred"
],
"url": "https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"tags": [
"x_transferred"
],
"url": "https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=37831062"
},
{
"tags": [
"x_transferred"
],
"url": "https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/envoyproxy/envoy/pull/30055"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/haproxy/haproxy/issues/2312"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/eclipse/jetty.project/issues/10679"
},
{
"tags": [
"x_transferred"
],
"url": "https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/nghttp2/nghttp2/pull/1961"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/alibaba/tengine/issues/1872"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=37830987"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=37830998"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/caddyserver/caddy/issues/5877"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/bcdannyboy/CVE-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/grpc/grpc-go/pull/6703"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0"
},
{
"tags": [
"x_transferred"
],
"url": "https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://my.f5.com/manage/s/article/K000137106"
},
{
"tags": [
"x_transferred"
],
"url": "https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.proxmox.com/show_bug.cgi?id=4988"
},
{
"tags": [
"x_transferred"
],
"url": "https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9"
},
{
"tags": [
"x_transferred"
],
"url": "https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/microsoft/CBL-Mariner/pull/6381"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/facebook/proxygen/pull/466"
},
{
"tags": [
"x_transferred"
],
"url": "https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/micrictor/http2-rst-stream"
},
{
"tags": [
"x_transferred"
],
"url": "https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve"
},
{
"tags": [
"x_transferred"
],
"url": "https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/h2o/h2o/pull/3291"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/nodejs/node/pull/50121"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/golang/go/issues/63417"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/advisories/GHSA-vx74-f528-fxqg"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/trafficserver/pull/10564"
},
{
"tags": [
"x_transferred"
],
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2023/10/10/6"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/opensearch-project/data-prepper/issues/3474"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/kubernetes/kubernetes/pull/121120"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/oqtane/oqtane.framework/discussions/3367"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
},
{
"tags": [
"x_transferred"
],
"url": "https://netty.io/news/2023/10/10/4-1-100-Final.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/"
},
{
"tags": [
"x_transferred"
],
"url": "https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack"
},
{
"tags": [
"x_transferred"
],
"url": "https://news.ycombinator.com/item?id=37837043"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/kazu-yamamoto/http2/issues/93"
},
{
"tags": [
"x_transferred"
],
"url": "https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113"
},
{
"name": "DSA-5522",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5522"
},
{
"name": "DSA-5521",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5521"
},
{
"tags": [
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/cve-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/ninenines/cowboy/issues/1615"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/varnishcache/varnish-cache/issues/3996"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/tempesta-tech/tempesta/issues/1986"
},
{
"tags": [
"x_transferred"
],
"url": "https://blog.vespa.ai/cve-2023-44487/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/etcd-io/etcd/issues/16740"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event"
},
{
"tags": [
"x_transferred"
],
"url": "https://istio.io/latest/news/security/istio-security-2023-004/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/junkurihara/rust-rpxy/issues/97"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1216123"
},
{
"tags": [
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"tags": [
"x_transferred"
],
"url": "https://ubuntu.com/security/CVE-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/advisories/GHSA-qppj-fm5r-hxr3"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/httpd-site/pull/10"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/projectcontour/contour/pull/5826"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/line/armeria/pull/5232"
},
{
"tags": [
"x_transferred"
],
"url": "https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.paloaltonetworks.com/CVE-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/akka/akka-http/issues/4323"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/openresty/openresty/issues/930"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/apache/apisix/issues/10320"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/Azure/AKS/issues/3947"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/Kong/kong/discussions/11741"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/"
},
{
"tags": [
"x_transferred"
],
"url": "https://github.com/caddyserver/caddy/releases/tag/v2.7.5"
},
{
"name": "[debian-lts-announce] 20231013 [SECURITY] [DLA 3617-1] tomcat9 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html"
},
{
"name": "[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/13/4"
},
{
"name": "[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/13/9"
},
{
"tags": [
"x_transferred"
],
"url": "https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html"
},
{
"name": "FEDORA-2023-ed2642fd58",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/"
},
{
"tags": [
"x_transferred"
],
"url": "https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/"
},
{
"name": "[debian-lts-announce] 20231016 [SECURITY] [DLA 3621-1] nghttp2 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20231016-0001/"
},
{
"name": "[debian-lts-announce] 20231016 [SECURITY] [DLA 3617-2] tomcat9 regression update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html"
},
{
"name": "[oss-security] 20231018 Vulnerability in Jenkins",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/18/4"
},
{
"name": "[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"
},
{
"name": "[oss-security] 20231019 CVE-2023-45802: Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/19/6"
},
{
"name": "FEDORA-2023-54fadada12",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/"
},
{
"name": "FEDORA-2023-5ff7bf1dd8",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/"
},
{
"name": "[oss-security] 20231020 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/20/8"
},
{
"name": "FEDORA-2023-17efd3f2cd",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/"
},
{
"name": "FEDORA-2023-d5030c983c",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/"
},
{
"name": "FEDORA-2023-0259c3f26f",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/"
},
{
"name": "FEDORA-2023-2a9214af5f",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/"
},
{
"name": "FEDORA-2023-e9c04d81c1",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/"
},
{
"name": "FEDORA-2023-f66fc0f62a",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/"
},
{
"name": "FEDORA-2023-4d2fd884ea",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/"
},
{
"name": "FEDORA-2023-b2c50535cb",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/"
},
{
"name": "FEDORA-2023-fe53e13b5b",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"name": "FEDORA-2023-4bf641255e",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"name": "[debian-lts-announce] 20231030 [SECURITY] [DLA 3641-1] jetty9 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html"
},
{
"name": "DSA-5540",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5540"
},
{
"name": "[debian-lts-announce] 20231031 [SECURITY] [DLA 3638-1] h2o security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715"
},
{
"name": "FEDORA-2023-1caffb88af",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/"
},
{
"name": "FEDORA-2023-3f70b8d406",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/"
},
{
"name": "FEDORA-2023-7b52921cae",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/"
},
{
"name": "FEDORA-2023-7934802344",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/"
},
{
"name": "FEDORA-2023-dbe64661af",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/"
},
{
"name": "FEDORA-2023-822aab0a5a",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
},
{
"name": "[debian-lts-announce] 20231105 [SECURITY] [DLA 3645-1] trafficserver security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html"
},
{
"name": "DSA-5549",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5549"
},
{
"name": "FEDORA-2023-c0c6a91330",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/"
},
{
"name": "FEDORA-2023-492b7be466",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/"
},
{
"name": "DSA-5558",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5558"
},
{
"name": "[debian-lts-announce] 20231119 [SECURITY] [DLA 3656-1] netty security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html"
},
{
"name": "GLSA-202311-09",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202311-09"
},
{
"name": "DSA-5570",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2023/dsa-5570"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240426-0007/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240621-0007/"
},
{
"url": "https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/08/13/6"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"defaultStatus": "unknown",
"product": "RUGGEDCOM APE1808",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SINEC NMS",
"vendor": "Siemens",
"versions": [
{
"lessThan": "V3.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "SIPLUS S7-1500 CPU 1518-4 PN/DP MFP",
"vendor": "Siemens",
"versions": [
{
"lessThan": "*",
"status": "affected",
"version": "V3.1.5",
"versionType": "custom"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-05-12T10:52:23.784Z",
"orgId": "0b142b55-0307-4c5a-b3c9-f314f3fb7c5e",
"shortName": "siemens-SADP"
},
"references": [
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-832273.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-341067.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-784301.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-915275.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/html/ssa-082556.html"
}
],
"x_adpType": "supplier"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-06-07T20:05:34.376Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"url": "https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73"
},
{
"url": "https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/"
},
{
"url": "https://aws.amazon.com/security/security-bulletins/AWS-2023-011/"
},
{
"url": "https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack"
},
{
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"url": "https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/"
},
{
"url": "https://news.ycombinator.com/item?id=37831062"
},
{
"url": "https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/"
},
{
"url": "https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack"
},
{
"url": "https://github.com/envoyproxy/envoy/pull/30055"
},
{
"url": "https://github.com/haproxy/haproxy/issues/2312"
},
{
"url": "https://github.com/eclipse/jetty.project/issues/10679"
},
{
"url": "https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764"
},
{
"url": "https://github.com/nghttp2/nghttp2/pull/1961"
},
{
"url": "https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61"
},
{
"url": "https://github.com/alibaba/tengine/issues/1872"
},
{
"url": "https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2"
},
{
"url": "https://news.ycombinator.com/item?id=37830987"
},
{
"url": "https://news.ycombinator.com/item?id=37830998"
},
{
"url": "https://github.com/caddyserver/caddy/issues/5877"
},
{
"url": "https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/"
},
{
"url": "https://github.com/bcdannyboy/CVE-2023-44487"
},
{
"url": "https://github.com/grpc/grpc-go/pull/6703"
},
{
"url": "https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244"
},
{
"url": "https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0"
},
{
"url": "https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html"
},
{
"url": "https://my.f5.com/manage/s/article/K000137106"
},
{
"url": "https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/"
},
{
"url": "https://bugzilla.proxmox.com/show_bug.cgi?id=4988"
},
{
"url": "https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9"
},
{
"name": "[oss-security] 20231010 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/10/7"
},
{
"name": "[oss-security] 20231010 CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/10/6"
},
{
"url": "https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected"
},
{
"url": "https://github.com/microsoft/CBL-Mariner/pull/6381"
},
{
"url": "https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo"
},
{
"url": "https://github.com/facebook/proxygen/pull/466"
},
{
"url": "https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088"
},
{
"url": "https://github.com/micrictor/http2-rst-stream"
},
{
"url": "https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve"
},
{
"url": "https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/"
},
{
"url": "https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf"
},
{
"url": "https://github.com/h2o/h2o/pull/3291"
},
{
"url": "https://github.com/nodejs/node/pull/50121"
},
{
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"url": "https://github.com/golang/go/issues/63417"
},
{
"url": "https://github.com/advisories/GHSA-vx74-f528-fxqg"
},
{
"url": "https://github.com/apache/trafficserver/pull/10564"
},
{
"url": "https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487"
},
{
"url": "https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14"
},
{
"url": "https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q"
},
{
"url": "https://www.openwall.com/lists/oss-security/2023/10/10/6"
},
{
"url": "https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487"
},
{
"url": "https://github.com/opensearch-project/data-prepper/issues/3474"
},
{
"url": "https://github.com/kubernetes/kubernetes/pull/121120"
},
{
"url": "https://github.com/oqtane/oqtane.framework/discussions/3367"
},
{
"url": "https://github.com/advisories/GHSA-xpw8-rcwv-8f8p"
},
{
"url": "https://netty.io/news/2023/10/10/4-1-100-Final.html"
},
{
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"url": "https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/"
},
{
"url": "https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack"
},
{
"url": "https://news.ycombinator.com/item?id=37837043"
},
{
"url": "https://github.com/kazu-yamamoto/http2/issues/93"
},
{
"url": "https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html"
},
{
"url": "https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1"
},
{
"url": "https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113"
},
{
"name": "DSA-5522",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5522"
},
{
"name": "DSA-5521",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5521"
},
{
"url": "https://access.redhat.com/security/cve/cve-2023-44487"
},
{
"url": "https://github.com/ninenines/cowboy/issues/1615"
},
{
"url": "https://github.com/varnishcache/varnish-cache/issues/3996"
},
{
"url": "https://github.com/tempesta-tech/tempesta/issues/1986"
},
{
"url": "https://blog.vespa.ai/cve-2023-44487/"
},
{
"url": "https://github.com/etcd-io/etcd/issues/16740"
},
{
"url": "https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event"
},
{
"url": "https://istio.io/latest/news/security/istio-security-2023-004/"
},
{
"url": "https://github.com/junkurihara/rust-rpxy/issues/97"
},
{
"url": "https://bugzilla.suse.com/show_bug.cgi?id=1216123"
},
{
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"url": "https://ubuntu.com/security/CVE-2023-44487"
},
{
"url": "https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125"
},
{
"url": "https://github.com/advisories/GHSA-qppj-fm5r-hxr3"
},
{
"url": "https://github.com/apache/httpd-site/pull/10"
},
{
"url": "https://github.com/projectcontour/contour/pull/5826"
},
{
"url": "https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632"
},
{
"url": "https://github.com/line/armeria/pull/5232"
},
{
"url": "https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/"
},
{
"url": "https://security.paloaltonetworks.com/CVE-2023-44487"
},
{
"url": "https://github.com/akka/akka-http/issues/4323"
},
{
"url": "https://github.com/openresty/openresty/issues/930"
},
{
"url": "https://github.com/apache/apisix/issues/10320"
},
{
"url": "https://github.com/Azure/AKS/issues/3947"
},
{
"url": "https://github.com/Kong/kong/discussions/11741"
},
{
"url": "https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487"
},
{
"url": "https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/"
},
{
"url": "https://github.com/caddyserver/caddy/releases/tag/v2.7.5"
},
{
"name": "[debian-lts-announce] 20231013 [SECURITY] [DLA 3617-1] tomcat9 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html"
},
{
"name": "[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/13/4"
},
{
"name": "[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/13/9"
},
{
"url": "https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/"
},
{
"url": "https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html"
},
{
"name": "FEDORA-2023-ed2642fd58",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/"
},
{
"url": "https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/"
},
{
"name": "[debian-lts-announce] 20231016 [SECURITY] [DLA 3621-1] nghttp2 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20231016-0001/"
},
{
"name": "[debian-lts-announce] 20231016 [SECURITY] [DLA 3617-2] tomcat9 regression update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html"
},
{
"name": "[oss-security] 20231018 Vulnerability in Jenkins",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/18/4"
},
{
"name": "[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/18/8"
},
{
"name": "[oss-security] 20231019 CVE-2023-45802: Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/19/6"
},
{
"name": "FEDORA-2023-54fadada12",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/"
},
{
"name": "FEDORA-2023-5ff7bf1dd8",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/"
},
{
"name": "[oss-security] 20231020 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2023/10/20/8"
},
{
"name": "FEDORA-2023-17efd3f2cd",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/"
},
{
"name": "FEDORA-2023-d5030c983c",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/"
},
{
"name": "FEDORA-2023-0259c3f26f",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/"
},
{
"name": "FEDORA-2023-2a9214af5f",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/"
},
{
"name": "FEDORA-2023-e9c04d81c1",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/"
},
{
"name": "FEDORA-2023-f66fc0f62a",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/"
},
{
"name": "FEDORA-2023-4d2fd884ea",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/"
},
{
"name": "FEDORA-2023-b2c50535cb",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/"
},
{
"name": "FEDORA-2023-fe53e13b5b",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/"
},
{
"name": "FEDORA-2023-4bf641255e",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/"
},
{
"name": "[debian-lts-announce] 20231030 [SECURITY] [DLA 3641-1] jetty9 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html"
},
{
"name": "DSA-5540",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5540"
},
{
"name": "[debian-lts-announce] 20231031 [SECURITY] [DLA 3638-1] h2o security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html"
},
{
"url": "https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715"
},
{
"name": "FEDORA-2023-1caffb88af",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/"
},
{
"name": "FEDORA-2023-3f70b8d406",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/"
},
{
"name": "FEDORA-2023-7b52921cae",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/"
},
{
"name": "FEDORA-2023-7934802344",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/"
},
{
"name": "FEDORA-2023-dbe64661af",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/"
},
{
"name": "FEDORA-2023-822aab0a5a",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/"
},
{
"name": "[debian-lts-announce] 20231105 [SECURITY] [DLA 3645-1] trafficserver security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html"
},
{
"name": "DSA-5549",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5549"
},
{
"name": "FEDORA-2023-c0c6a91330",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/"
},
{
"name": "FEDORA-2023-492b7be466",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/"
},
{
"name": "DSA-5558",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5558"
},
{
"name": "[debian-lts-announce] 20231119 [SECURITY] [DLA 3656-1] netty security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html"
},
{
"name": "GLSA-202311-09",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202311-09"
},
{
"name": "DSA-5570",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2023/dsa-5570"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240426-0007/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240621-0007/"
},
{
"url": "https://github.com/grpc/grpc/releases/tag/v1.59.2"
},
{
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2023-44487",
"datePublished": "2023-10-10T00:00:00.000Z",
"dateReserved": "2023-09-29T00:00:00.000Z",
"dateUpdated": "2026-05-12T10:52:23.784Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"cisa_known_exploited": {
"cveID": "CVE-2023-44487",
"cwes": "[\"CWE-400\"]",
"dateAdded": "2023-10-10",
"dueDate": "2023-10-31",
"knownRansomwareCampaignUse": "Unknown",
"notes": "This vulnerability affects a common open-source component, third-party library, or protocol used by different products. For more information, please see: HTTP/2 Rapid Reset Vulnerability, CVE-2023-44487 | CISA: https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487; https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/; https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"product": "HTTP/2",
"requiredAction": "Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.",
"shortDescription": "HTTP/2 contains a rapid reset vulnerability that allows for a distributed denial-of-service attack (DDoS).",
"vendorProject": "IETF",
"vulnerabilityName": "HTTP/2 Rapid Reset Attack Vulnerability"
},
"epss": {
"cve": "CVE-2023-44487",
"date": "2026-06-08",
"epss": "0.944",
"percentile": "0.99976"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-44487\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2023-10-10T14:15:10.883\",\"lastModified\":\"2026-05-12T15:10:32.260\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.\"},{\"lang\":\"es\",\"value\":\"El protocolo HTTP/2 permite una denegaci\u00f3n de servicio (consumo de recursos del servidor) porque la cancelaci\u00f3n de solicitudes puede restablecer muchas transmisiones r\u00e1pidamente, como se explot\u00f3 en la naturaleza entre agosto y octubre de 2023.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}]},\"cisaExploitAdd\":\"2023-10-10\",\"cisaActionDue\":\"2023-10-31\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"HTTP/2 Rapid Reset Attack Vulnerability\",\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518f-4_pn\\\\/dp_mfp_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1.5\",\"matchCriteriaId\":\"2A7548B8-3DF7-46D9-8A4F-87C38969D900\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518f-4_pn\\\\/dp_mfp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B1EE93D-BAD2-4B86-910C-8784FCC9F398\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0\",\"matchCriteriaId\":\"C89891C1-DFD7-4E1F-80A9-7485D86A15B5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"4664B195-AF14-4834-82B3-0B2C98020EB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"75BC588E-CDF0-404E-AD61-02093A1DF343\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"A334F7B4-7283-4453-BAED-D2E01B7F8A6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:sp2_update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6BEA71C-CA81-4B5D-A688-2B21E62DC351\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_ins:1.0:sp2_update_2:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B405F22-5517-49F5-A7CA-1E50D58DFC75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_nms:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.0\",\"matchCriteriaId\":\"AE06B8AF-B36C-4743-A056-30712163F75B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:st7_scadaconnect:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.1\",\"matchCriteriaId\":\"BCBD17AE-C1AE-4ECF-A991-0FFBDD06D687\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:ruggedcom_ape1808_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37FDCA69-9049-40B4-88AF-F476901022B6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:ruggedcom_ape1808:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B89A6863-B602-4404-8D26-337FECABFFF0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp_mfp_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1.5\",\"matchCriteriaId\":\"99E36624-A573-47D9-B158-B18A8A822FBA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40F38253-92F5-4A3A-AA07-292F7542D8A6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:siplus_s7-1500_cpu_1518-4_pn\\\\/dp_mfp_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1.5\",\"matchCriteriaId\":\"19F1C257-0EE6-47DE-B4BE-169F801FFDD8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:siplus_s7-1500_cpu_1518-4_pn\\\\/dp_mfp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2F63E0A-126D-4A93-8159-45EB5E606F81\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5200E35-222B-42E0-83E0-5B702684D992\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nghttp2:nghttp2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.57.0\",\"matchCriteriaId\":\"C3BDC297-F023-4E87-8518-B84CCF9DD6A8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netty:netty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.1.100\",\"matchCriteriaId\":\"D12D5257-7ED2-400F-9EF7-40E0D3650C2B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:1.24.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B058776-B5B7-4079-B0AF-23F40926DCEC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:1.25.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D565975-EFD9-467C-B6E3-1866A4EF17A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:1.26.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D487271-1B5E-4F16-B0CB-A7B8908935C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:1.27.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA6ED627-EFB3-4BDD-8ECC-C5947A1470B2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.4.53\",\"matchCriteriaId\":\"A4A6F189-6C43-462D-85C9-B0EBDA8A4683\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndExcluding\":\"10.0.17\",\"matchCriteriaId\":\"C993C920-85C0-4181-A95E-5D965A670738\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"11.0.0\",\"versionEndExcluding\":\"11.0.17\",\"matchCriteriaId\":\"08E79A8E-E12C-498F-AF4F-1AAA7135661E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:eclipse:jetty:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndExcluding\":\"12.0.2\",\"matchCriteriaId\":\"F138D800-9A3B-4C76-8A3C-4793083A1517\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:caddyserver:caddy:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.7.5\",\"matchCriteriaId\":\"6341DDDA-AD27-4087-9D59-0A212F0037B4\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.20.10\",\"matchCriteriaId\":\"328120E4-C031-44B4-9BE5-03B0CDAA066F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:go:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.21.0\",\"versionEndExcluding\":\"1.21.3\",\"matchCriteriaId\":\"5FD9AB15-E5F6-4DBC-9EC7-D0ABA705802A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:http2:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.17.0\",\"matchCriteriaId\":\"D7D2F801-6F65-4705-BCB9-D057EA54A707\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:golang:networking:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"0.17.0\",\"matchCriteriaId\":\"801F25DA-F38C-4452-8E90-235A3B1A5FF0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"D93F04AD-DF14-48AB-9F13-8B2E491CF42E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"7522C760-7E07-406F-BF50-5656D5723C4F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"3A7F605E-EB10-40FB-98D6-7E3A95E310BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"783E62F2-F867-48F1-B123-D1227C970674\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_access_policy_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A8D90B7-A1AF-4EFB-B688-1563D81E5C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"6603ED6A-3366-4572-AFCD-B3D4B1EC7606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"88978E38-81D3-4EFE-8525-A300B101FA69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"0510296F-92D7-4388-AE3A-0D9799C2FC4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"D7698D6C-B1F7-43C1-BBA6-88E956356B3D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_firewall_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1A1CC91B-6920-4AF0-9EDD-DD3189E78F4D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"05E452AA-A520-4CBE-8767-147772B69194\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"596FC5D5-7329-4E39-841E-CAE937C02219\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"B3C7A168-F370-441E-8790-73014BCEC39F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"CF16FD01-7704-40AB-ACB2-80A883804D22\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1769D69A-CB59-46B1-89B3-FB97DC6DEB9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"9167FEC1-2C37-4946-9657-B4E69301FB24\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"7B4B3442-E0C0-48CD-87AD-060E15C9801E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"8FA85EC1-D91A-49DD-949B-2AF7AC813CA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"20662BB0-4C3D-4CF0-B068-3555C65DD06C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_analytics:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59203EBF-C52A-45A1-B8DF-00E17E3EFB51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"7EC2324D-EC8B-41DF-88A7-819E53AAD0FC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"9B88F9D1-B54B-40C7-A18A-26C4A071D7EC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"C8F39403-C259-4D6F-9E9A-53671017EEDB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"220F2D38-FA82-45EF-B957-7678C9FEDBC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_acceleration_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C698C1C-A3DD-46E2-B05A-12F2604E7F85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"922AA845-530A-4B4B-9976-4CBC30C8A324\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"F938EB43-8373-47EB-B269-C6DF058A9244\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"1771493E-ACAA-477F-8AB4-25DB12F6AD6E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"5E86F3D5-65A4-48CE-A6A2-736BBB88E3F8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_security_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"87670A74-34FE-45DF-A725-25B804C845B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"C7E422F6-C4C2-43AC-B137-0997B5739030\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"CC3F710F-DBCB-4976-9719-CF063DA22377\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"4B9B76A1-7C5A-453F-A4ED-F1A81BCEBEB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"88EDFCD9-775C-48FA-9CDA-2B04DA8D0612\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67DB21AE-DF53-442D-B492-C4ED9A20B105\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"4C9FCBCB-9CE0-49E7-85C8-69E71D211912\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"112DFA85-90AD-478D-BD70-8C7C0C074F1B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"DB704A1C-D8B7-48BB-A15A-C14DB591FE4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"21D51D9F-2840-4DEA-A007-D20111A1745C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_carrier-grade_nat:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BC1D037-74D2-4F92-89AD-C90F6CBF440B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"CAEF3EA4-7D5A-4B44-9CE3-258AEC745866\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"2FBCE2D1-9D93-415D-AB2C-2060307C305A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"8070B469-8CC4-4D2F-97D7-12D0ABB963C1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"A326597E-725D-45DE-BEF7-2ED92137B253\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B235A78-649B-46C5-B24B-AB485A884654\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"08B25AAB-A98C-4F89-9131-29E3A8C0ED23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"ED9B976A-D3AD-4445-BF8A-067C3EBDFBB0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"98D2CE1E-DED0-470A-AA78-C78EF769C38E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"C966FABA-7199-4F0D-AB8C-4590FE9D2FFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_domain_name_system:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84D00768-E71B-4FF7-A7BF-F2C8CFBC900D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"E3D2ABA3-D4A9-4267-B0DF-7C3BBEEAEB66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"BC36311E-BB00-4750-85C8-51F5A2604F07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"A65D357E-4B40-42EC-9AAA-2B6CEF78C401\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"D7EF9865-FE65-4DFB-BF21-62FBCE65FF1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_fraud_protection_service:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABBD10E8-6054-408F-9687-B9BF6375CA09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"E6018B01-048C-43BB-A78D-66910ED60CA9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"3A6A5686-5A8B-45D5-9165-BC99D2CCAC47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"5D2A121F-5BD2-4263-8ED3-1DDE25B5C306\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"0A4F7BAD-3EDD-4DE0-AAB7-DE5ACA34DD79\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_global_traffic_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83794B04-87E2-4CA9-81F5-BB820D0F5395\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"D9EC2237-117F-43BD-ADEC-516CF72E04EF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"F70D4B6F-65CF-48F4-9A07-072DFBCE53D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"29563719-1AF2-4BB8-8CCA-A0869F87795D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"D24815DD-579A-46D1-B9F2-3BB2C56BC54D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_link_controller:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0A6E7035-3299-474F-8F67-945EA9A059D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"0360F76D-E75E-4B05-A294-B47012323ED9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"7A4607BF-41AC-4E84-A110-74E085FF0445\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"441CC945-7CA3-49C0-AE10-94725301E31D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"46BA8E8A-6ED5-4FB2-8BBC-586AA031085A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_local_traffic_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"56FB92F7-FF1E-425D-A5AB-9D9FB0BB9450\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_next:20.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"969C4F14-F6D6-46D6-B348-FC1463877680\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.5.0\",\"versionEndIncluding\":\"1.8.2\",\"matchCriteriaId\":\"41AD5040-1250-45F5-AB63-63F333D49BCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"8257AA59-C14D-4EC1-B22C-DFBB92CBC297\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"37DB32BB-F4BA-4FB5-94B1-55C3F06749CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"FFF5007E-761C-4697-8D34-C064DF0ABE8D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"910441D3-90EF-4375-B007-D51120A60AB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"667EB77B-DA13-4BA4-9371-EE3F3A109F38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"8A6F9699-A485-4614-8F38-5A556D31617E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"5A90F547-97A2-41EC-9FDF-25F869F0FA38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"E76E1B82-F1DC-4366-B388-DBDF16C586A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"660137F4-15A1-42D1-BBAC-99A1D5BB398B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_ssl_orchestrator:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C446827A-1F71-4FAD-9422-580642D26AD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"1932D32D-0E4B-4BBD-816F-6D47AB2E2F04\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"D47B7691-A95B-45C0-BAB4-27E047F3C379\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"2CD1637D-0E42-4928-867A-BA0FDB6E8462\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"3A599F90-F66B-4DF0-AD7D-D234F328BD59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_webaccelerator:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D1B2000-C3FE-4B4C-885A-A5076EB164E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1.0\",\"versionEndIncluding\":\"13.1.5\",\"matchCriteriaId\":\"5326759A-AFB0-4A15-B4E9-3C9A2E5DB32A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1.0\",\"versionEndIncluding\":\"14.1.5\",\"matchCriteriaId\":\"57D92D05-C67D-437E-88F3-DCC3F6B0ED2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.1.0\",\"versionEndIncluding\":\"15.1.10\",\"matchCriteriaId\":\"ECCB8C30-861E-4E48-A5F5-30EE523C1FB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.1.0\",\"versionEndIncluding\":\"16.1.4\",\"matchCriteriaId\":\"F5FEAD2A-3A58-432E-BEBB-6E3FDE24395F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:big-ip_websafe:17.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8AB23AE6-245E-43D6-B832-933F8259F937\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.9.5\",\"versionEndIncluding\":\"1.25.2\",\"matchCriteriaId\":\"1188B4A9-2684-413C-83D1-E91C75AE0FCF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx_ingress_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndIncluding\":\"2.4.2\",\"matchCriteriaId\":\"3337609D-5291-4A52-BC6A-6A8D4E60EB20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx_ingress_controller:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0.0\",\"versionEndIncluding\":\"3.3.0\",\"matchCriteriaId\":\"6CF0ABD9-EB28-4966-8C31-EED7AFBF1527\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx_plus:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"r25\",\"versionEndExcluding\":\"r29\",\"matchCriteriaId\":\"F291CB34-47A4-425A-A200-087CC295AEC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx_plus:r29:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"5892B558-EC3A-43FF-A1D5-B2D9F70796F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:f5:nginx_plus:r30:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"96BF2B19-52C7-4051-BA58-CAE6F912B72F\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.5.0\",\"versionEndIncluding\":\"8.5.93\",\"matchCriteriaId\":\"ABD26B48-CC80-4FAE-BD3D-78DE4C80C92B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndIncluding\":\"9.0.80\",\"matchCriteriaId\":\"F3EC20B6-B2AB-41F5-9BF9-D16C1FE67C34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.1.0\",\"versionEndIncluding\":\"10.1.13\",\"matchCriteriaId\":\"0765CC3D-AB1A-4147-8900-EF4C105321F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone1:*:*:*:*:*:*\",\"matchCriteriaId\":\"D1AA7FF6-E8E7-4BF6-983E-0A99B0183008\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone10:*:*:*:*:*:*\",\"matchCriteriaId\":\"57088BDD-A136-45EF-A8A1-2EBF79CEC2CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone11:*:*:*:*:*:*\",\"matchCriteriaId\":\"B32D1D7A-A04F-444E-8F45-BB9A9E4B0199\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone2:*:*:*:*:*:*\",\"matchCriteriaId\":\"2AAD52CE-94F5-4F98-A027-9A7E68818CB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1F981F5-035A-4EDD-8A9F-481EE8BC7FF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone4:*:*:*:*:*:*\",\"matchCriteriaId\":\"03A171AF-2EC8-4422-912C-547CDB58CAAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone5:*:*:*:*:*:*\",\"matchCriteriaId\":\"538E68C4-0BA4-495F-AEF8-4EF6EE7963CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone6:*:*:*:*:*:*\",\"matchCriteriaId\":\"49350A6E-5E1D-45B2-A874-3B8601B3ADCC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone7:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F50942F-DF54-46C0-8371-9A476DD3EEA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone8:*:*:*:*:*:*\",\"matchCriteriaId\":\"D12C2C95-B79F-4AA4-8CE3-99A3EE7991AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:tomcat:11.0.0:milestone9:*:*:*:*:*:*\",\"matchCriteriaId\":\"98792138-DD56-42DF-9612-3BDC65EEC117\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apple:swiftnio_http\\\\/2:*:*:*:*:*:swift:*:*\",\"versionEndExcluding\":\"1.28.0\",\"matchCriteriaId\":\"08190072-3880-4EF5-B642-BA053090D95B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grpc:grpc:*:*:*:*:*:go:*:*\",\"versionEndExcluding\":\"1.56.3\",\"matchCriteriaId\":\"5F4CDEA9-CB47-4881-B096-DA896E2364F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grpc:grpc:*:*:*:*:*:-:*:*\",\"versionEndIncluding\":\"1.59.2\",\"matchCriteriaId\":\"E65AF7BC-7DAE-408A-8485-FBED22815F75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grpc:grpc:*:*:*:*:*:go:*:*\",\"versionStartIncluding\":\"1.58.0\",\"versionEndExcluding\":\"1.58.3\",\"matchCriteriaId\":\"DD868DDF-C889-4F36-B5E6-68B6D9EA48CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:grpc:grpc:1.57.0:-:*:*:*:go:*:*\",\"matchCriteriaId\":\"FBD991E2-DB5A-4AAD-95BA-4B5ACB811C96\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.23\",\"matchCriteriaId\":\"4496821E-BD55-4F31-AD9C-A3D66CBBD6BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:.net:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.12\",\"matchCriteriaId\":\"8DF7ECF6-178D-433C-AA21-BAE9EF248F37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.0.0\",\"versionEndExcluding\":\"6.0.23\",\"matchCriteriaId\":\"1C3418F4-B8BF-4666-BB39-C188AB01F45C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:asp.net_core:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.0.0\",\"versionEndExcluding\":\"7.0.12\",\"matchCriteriaId\":\"1278DD1C-EFA9-4316-AD32-24C1B1FB0CEA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:azure_kubernetes_service:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023-10-08\",\"matchCriteriaId\":\"3BDFB0FF-0F4A-4B7B-94E8-ED72A8106314\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.0\",\"versionEndExcluding\":\"17.2.20\",\"matchCriteriaId\":\"16A8F269-E07E-402F-BFD5-60F3988A5EAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.4\",\"versionEndExcluding\":\"17.4.12\",\"matchCriteriaId\":\"C4B2B972-69E2-4D21-9A7C-B2AFF1D89EB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.6\",\"versionEndExcluding\":\"17.6.8\",\"matchCriteriaId\":\"DA5834D4-F52F-41C0-AA11-C974FFEEA063\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:visual_studio_2022:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.7\",\"versionEndExcluding\":\"17.7.5\",\"matchCriteriaId\":\"2166106F-ACD6-4C7B-B0CC-977B83CC5F73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x64:*\",\"versionEndExcluding\":\"10.0.14393.6351\",\"matchCriteriaId\":\"4CD49C41-6D90-47D3-AB4F-4A74169D3A8F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1607:*:*:*:*:*:*:x86:*\",\"versionEndExcluding\":\"10.0.14393.6351\",\"matchCriteriaId\":\"BAEFEE13-9CD7-46A2-8AF6-0A33C79C05F1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_1809:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.17763.4974\",\"matchCriteriaId\":\"E500D59C-6597-45E9-A57B-BE26C0C231D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_21h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.19044.3570\",\"matchCriteriaId\":\"C9F9A643-90C6-489C-98A0-D2739CE72F86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_10_22h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.19045.3570\",\"matchCriteriaId\":\"1814619C-ED07-49E0-A50A-E28D824D43BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_21h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.22000.2538\",\"matchCriteriaId\":\"100A27D3-87B0-4E72-83F6-7605E3F35E63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_11_22h2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.0.22621.2428\",\"matchCriteriaId\":\"C6A36795-0238-45C9-ABE6-3DCCF751915B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"041FF8BA-0B12-4A1F-B4BF-9C4F33B7C1E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2019:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB79EE26-FC32-417D-A49C-A1A63165A968\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:microsoft:windows_server_2022:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"821614DD-37DD-44E2-A8A4-FE8D23A33C3C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"18.0.0\",\"versionEndExcluding\":\"18.18.2\",\"matchCriteriaId\":\"94BAB9EB-1527-4D9A-BADE-0708579536CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"20.0.0\",\"versionEndExcluding\":\"20.8.1\",\"matchCriteriaId\":\"69843DE4-4721-4F0A-A9B7-0F6DF5AAA388\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:microsoft:cbl-mariner:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023-10-11\",\"matchCriteriaId\":\"B25279EF-C406-4133-99ED-0492703E0A4E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:dena:h2o:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023-10-10\",\"matchCriteriaId\":\"9FFFF84B-F35C-43DE-959A-A5D10C3AE9F5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:facebook:proxygen:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023.10.16.00\",\"matchCriteriaId\":\"9DCE8C89-7C22-48CA-AF22-B34C8AA2CB8C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:apisix:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.6.1\",\"matchCriteriaId\":\"EDEB508E-0EBD-4450-9074-983DDF568AB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndExcluding\":\"8.1.9\",\"matchCriteriaId\":\"93A1A748-6C71-4191-8A16-A93E94E2CDE4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:traffic_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.0.0\",\"versionEndExcluding\":\"9.2.3\",\"matchCriteriaId\":\"4E4BCAF6-B246-41EC-9EE1-24296BFC4F5A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:amazon:opensearch_data_prepper:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.5.0\",\"matchCriteriaId\":\"6F70360D-6214-46BA-AF82-6AB01E13E4E9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"46D69DCC-AE4D-4EA5-861C-D60951444C6C\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:kazu-yamamoto:http2:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.2.2\",\"matchCriteriaId\":\"E2DA759E-1AF8-49D3-A3FC-1B426C13CA82\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:istio:istio:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.17.6\",\"matchCriteriaId\":\"28BE6F7B-AE66-4C8A-AAFA-F1262671E9BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:istio:istio:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.18.0\",\"versionEndExcluding\":\"1.18.3\",\"matchCriteriaId\":\"F0C8E760-C8D2-483A-BBD4-6A6D292A3874\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:istio:istio:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.19.0\",\"versionEndExcluding\":\"1.19.1\",\"matchCriteriaId\":\"5D0F78BB-6A05-4C97-A8DB-E731B6CC8CC7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:varnish_cache_project:varnish_cache:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2023-10-10\",\"matchCriteriaId\":\"050AE218-3871-44D6-94DA-12D84C2093CB\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:traefik:traefik:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.10.5\",\"matchCriteriaId\":\"B36BFFB0-C0EC-4926-A1DB-0B711C846A68\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:traefik:traefik:3.0.0:beta1:*:*:*:*:*:*\",\"matchCriteriaId\":\"376EAF9B-E994-4268-9704-0A45EA30270F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:traefik:traefik:3.0.0:beta2:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3D08335-C291-4623-B80C-3B14C4D1FA32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:traefik:traefik:3.0.0:beta3:*:*:*:*:*:*\",\"matchCriteriaId\":\"21033CEE-CEF5-4B0D-A565-4A6FC764AA6D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:projectcontour:contour:*:*:*:*:*:kubernetes:*:*\",\"versionEndExcluding\":\"2023-10-11\",\"matchCriteriaId\":\"FC4C66B1-42C0-495D-AE63-2889DE0BED84\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linkerd:linkerd:*:*:*:*:stable:kubernetes:*:*\",\"versionStartIncluding\":\"2.12.0\",\"versionEndIncluding\":\"2.12.5\",\"matchCriteriaId\":\"8633E263-F066-4DD8-A734-90207207A873\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linkerd:linkerd:2.13.0:*:*:*:stable:kubernetes:*:*\",\"matchCriteriaId\":\"34A23BD9-A0F4-4D85-8011-EAC93C29B4E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linkerd:linkerd:2.13.1:*:*:*:stable:kubernetes:*:*\",\"matchCriteriaId\":\"27ED3533-A795-422F-B923-68BE071DC00D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linkerd:linkerd:2.14.0:*:*:*:stable:kubernetes:*:*\",\"matchCriteriaId\":\"45F7E352-3208-4188-A5B1-906E00DF9896\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linkerd:linkerd:2.14.1:*:*:*:stable:kubernetes:*:*\",\"matchCriteriaId\":\"DF89A8AD-66FE-439A-B732-CAAB304D765B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:linecorp:armeria:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.26.0\",\"matchCriteriaId\":\"A400C637-AF18-4BEE-B57C-145261B65DEC\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:3scale_api_management_platform:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"653A5B08-0D02-4362-A8B1-D00B24C6C6F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:advanced_cluster_management_for_kubernetes:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B0E6B4B-BAA6-474E-A18C-72C9719CEC1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:advanced_cluster_security:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0FD736A-8730-446A-BA3A-7B608DB62B0E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:advanced_cluster_security:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4C504B6-3902-46E2-82B7-48AEC9CDD48D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_automation_platform:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B4BE2D6-43C3-4065-A213-5DB1325DC78F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:build_of_optaplanner:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1D54F5AE-61EC-4434-9D5F-9394A3979894\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:build_of_quarkus:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE29B9D6-63DC-4779-ACE8-4E51E6A0AF37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ceph_storage:5.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E37E1B3-6F68-4502-85D6-68333643BDFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cert-manager_operator_for_red_hat_openshift:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6D5A7736-A403-4617-8790-18E46CB74DA6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:certification_for_red_hat_enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33F13B03-69BF-4A8B-A0A0-7F47FD857461\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:certification_for_red_hat_enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9393119E-F018-463F-9548-60436F104195\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cost_management:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC45EE1E-2365-42D4-9D55-92FA24E5ED3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cryostat:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E567CD9F-5A43-4D25-B911-B5D0440698F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:decision_manager:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68146098-58F8-417E-B165-5182527117C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:fence_agents_remediation_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB4D6790-63E5-4043-B8BE-B489D649061D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:integration_camel_for_spring_boot:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"78698F40-0777-4990-822D-02E1B5D0E2C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:integration_camel_k:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B87C8AD3-8878-4546-86C2-BF411876648C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:integration_service_registry:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF03BDE8-602D-4DEE-BA5B-5B20FDF47741\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_a-mq:7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A58966CB-36AF-4E64-AB39-BE3A0753E155\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_a-mq_streams:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"585BC540-073B-425B-B664-5EA4C00AFED6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_core_services:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B453CF7-9AA6-4B94-A003-BF7AE0B82F53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_data_grid:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD354E32-A8B0-484C-B4C6-9FBCD3430D2D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_enterprise_application_platform:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B142ACCC-F7A9-4A3B-BE60-0D6691D5058D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72A54BDA-311C-413B-8E4D-388AD65A170A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_fuse:6.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A305F012-544E-4245-9D69-1C8CD37748B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:jboss_fuse:7.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B40CCE4F-EA2C-453D-BB76-6388767E5C6D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:logging_subsystem_for_red_hat_openshift:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF93A27E-AA2B-4C2E-9B8D-FE7267847326\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:machine_deletion_remediation_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2B12A3A8-6456-481A-A0C9-524543FCC149\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:migration_toolkit_for_applications:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C2E7E3C-A507-4AB2-97E5-4944D8775CF7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:migration_toolkit_for_containers:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E22EBF9-AA0D-4712-9D69-DD97679CE835\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:migration_toolkit_for_virtualization:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"941B114C-FBD7-42FF-B1D8-4EA30E99102C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:network_observability_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"339CFB34-A795-49F9-BF6D-A00F3A1A4F63\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:node_healthcheck_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8D044DBE-6F5A-4C53-828E-7B1A570CACFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:node_maintenance_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E23FA47F-B967-44AD-AB76-1BB2CAD3CA5B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift:-:*:*:*:*:aws:*:*\",\"matchCriteriaId\":\"65203CA1-5225-4E55-A187-6454C091F532\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_api_for_data_protection:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF8EFFB-5686-4F28-A68F-1A8854E098CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"932D137F-528B-4526-9A89-CD59FA1AB0FE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform_assisted_installer:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5DA9B2E2-958B-478D-87D6-E5CDDCD44315\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_data_science:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3F5FF1E-5DA3-4EC3-B41A-A362BDFC4C69\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_dev_spaces:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99B8A88B-0B31-4CFF-AFD7-C9D3DDD5790D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97321212-0E07-4CC2-A917-7B5F61AB9A5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_distributed_tracing:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF390236-3259-4C8F-891C-62ACC4386CD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_gitops:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C0AAA300-691A-4957-8B69-F6888CC971B1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_pipelines:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45937289-2D64-47CB-A750-5B4F0D4664A0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_sandboxed_containers:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B129311C-EB4B-4041-B85C-44D5E53FCAA3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_secondary_scheduler_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1AB54DB-3FB4-41CB-88ED-1400FD22AB85\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_serverless:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77675CB7-67D7-44E9-B7FF-D224B3341AA5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_service_mesh:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A76A2BCE-4AAE-46D7-93D6-2EDE0FC83145\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_virtualization:4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9C877879-B84B-471C-80CF-0656521CA8AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DCC81071-B46D-4F5D-AC25-B4A4CCC20C73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B3000D2-35DF-4A93-9FC0-1AD3AB8349B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openstack_platform:17.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E315FC5C-FF19-43C9-A58A-CF2A5FF13824\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:process_automation:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"20A6B40D-F991-4712-8E30-5FE008505CB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:quay:3.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1987BDA-0113-4603-B9BE-76647EB043F2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:run_once_duration_override_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D482A3D2-6E9B-42BA-9926-35E5BDD5F3BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:satellite:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"848C92A9-0677-442B-8D52-A448F2019903\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:self_node_remediation_operator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F564701-EDC1-43CF-BB9F-287D6992C6CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:service_interconnect:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12B0CF2B-D1E1-4E20-846E-6F0D873499A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EFEC7CA-8DDA-48A6-A7B6-1F1D14792890\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:support_for_spring_boot:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8885C2C-7FB8-40CA-BCB9-B48C50BF2499\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:web_terminal:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D88B140-D2A1-4A0A-A2E9-1A3B50C295AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F6AB192-9D7D-4A9A-8995-E53A9DE9EAFC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:service_telemetry_framework:1.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A903C3AD-2D25-45B5-BF4A-A5BEB2286627\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E30D0E6F-4AE8-4284-8716-991DFA48CC5D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:astra_control_center:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC5EBD2A-32A3-46D5-B155-B44DCB7F6902\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:akka:http_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.5.3\",\"matchCriteriaId\":\"C2792650-851F-4820-B003-06A4BEA092D7\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:konghq:kong_gateway:*:*:*:*:enterprise:*:*:*\",\"versionEndExcluding\":\"3.4.2\",\"matchCriteriaId\":\"9F6B63B9-F4C9-4A3F-9310-E0918E1070D1\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:jenkins:*:*:*:*:lts:*:*:*\",\"versionEndIncluding\":\"2.414.2\",\"matchCriteriaId\":\"E6FF5F80-A991-43D4-B49F-D843E2BC5798\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:jenkins:jenkins:*:*:*:*:-:*:*:*\",\"versionEndIncluding\":\"2.427\",\"matchCriteriaId\":\"54D25DA9-12D0-4F14-83E6-C69D0293AAB9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:solr:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.4.0\",\"matchCriteriaId\":\"8E1AFFB9-C717-4727-B0C9-5A0C281710E2\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openresty:openresty:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.21.4.3\",\"matchCriteriaId\":\"25C85001-E0AB-4B01-8EE7-1D9C77CD956E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:business_process_automation:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.2.003.009\",\"matchCriteriaId\":\"FB2BDBAC-8D19-4F81-8D31-6D0955A53D82\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:connected_mobile_experiences:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.1\",\"matchCriteriaId\":\"F98F9D27-6659-413F-8F29-4FDB0882AAC5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:crosswork_data_gateway:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.1.3\",\"matchCriteriaId\":\"C98BF315-C563-47C2-BAD1-63347A3D1008\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:crosswork_data_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.0.0\",\"versionEndExcluding\":\"5.0.2\",\"matchCriteriaId\":\"3F30E209-FA52-4D3B-9B88-4193EA388554\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:crosswork_situation_manager:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3178F3A5-A072-44E1-A225-B04BC536F4FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:crosswork_zero_touch_provisioning:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.0.0\",\"matchCriteriaId\":\"AA2BE0F1-DD16-4876-8EBA-F187BD38B159\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:data_center_network_manager:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"796B6C58-2140-4105-A2A1-69865A194A75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:enterprise_chat_and_email:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEA99DC6-EA03-469F-A8BE-7F96FDF0B333\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:expressway:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"x14.3.3\",\"matchCriteriaId\":\"6560DBF4-AFE6-4672-95DE-74A0B8F4170A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.4.2\",\"matchCriteriaId\":\"84785919-796D-41E5-B652-6B5765C81D4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:iot_field_network_director:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.11.0\",\"matchCriteriaId\":\"92A74A1A-C69F-41E6-86D0-D6BB1C5D0A1E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_access_registrar:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.3.3\",\"matchCriteriaId\":\"6FE7BA33-2AC0-4A85-97AD-6D77F20BA2AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_cable_provisioning:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.2.1\",\"matchCriteriaId\":\"4FE2F959-1084-48D1-B1F1-8182FC9862DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_infrastructure:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.10.4\",\"matchCriteriaId\":\"5CC17E6B-D7AB-40D7-AEC5-F5B555AC4D7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:prime_network_registrar:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"11.2\",\"matchCriteriaId\":\"1BB6B48E-EA36-40A0-96D0-AF909BEC1147\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_dynamic_attributes_connector:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.2.0\",\"matchCriteriaId\":\"2CBED844-7F94-498C-836D-8593381A9657\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_malware_analytics:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2.19.2\",\"matchCriteriaId\":\"C170DBA1-0899-4ECC-9A0D-8FEB1DA1B510\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:telepresence_video_communication_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"x14.3.3\",\"matchCriteriaId\":\"358FA1DC-63D3-49F6-AC07-9E277DD0D9DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ultra_cloud_core_-_policy_control_function:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2024.01.0\",\"matchCriteriaId\":\"BFF2D182-7599-4B81-B56B-F44EDA1384C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ultra_cloud_core_-_policy_control_function:2024.01.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4868BCCA-24DE-4F24-A8AF-B3A545C0396E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ultra_cloud_core_-_serving_gateway_function:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2024.02.0\",\"matchCriteriaId\":\"194F7A1F-FD43-4FF7-9AE2-C13AA5567E8A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:ultra_cloud_core_-_session_management_function:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2024.02.0\",\"matchCriteriaId\":\"BEC75F99-C7F0-47EB-9032-C9D3A42EBA20\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_attendant_console_advanced:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6638F4E-16F7-447D-B755-52640BCB1C61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_contact_center_domain_manager:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC34F742-530E-4AB4-8AFC-D1E088E256B4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_contact_center_enterprise:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D31CC0E9-8E21-436B-AB84-EA1B1BC60DCD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_contact_center_enterprise_-_live_data_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"12.6.2\",\"matchCriteriaId\":\"E22AD683-345B-4E16-BB9E-E9B1783E09AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:unified_contact_center_management_portal:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5C0D694-9E24-4782-B35F-D7C3E3B0F2ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:fog_director:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.22\",\"matchCriteriaId\":\"2955BEE9-F567-4006-B96D-92E10FF84DB4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"17.15.1\",\"matchCriteriaId\":\"67502878-DB20-4410-ABA0-A1C5705064CD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xr:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"7.11.2\",\"matchCriteriaId\":\"177DED2D-8089-4494-BDD9-7F84FC06CD5B\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:secure_web_appliance_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"15.1.0\",\"matchCriteriaId\":\"54A29FD3-4128-4333-8445-A7DD04A6ECF6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:secure_web_appliance:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67074526-9933-46B3-9FE3-A0BE73C5E8A7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.2\\\\(7\\\\)\",\"matchCriteriaId\":\"EEB32D2E-AD9D-44A0-AEF7-689F7D2605C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.3\\\\(1\\\\)\",\"versionEndExcluding\":\"10.3\\\\(5\\\\)\",\"matchCriteriaId\":\"0A236A0A-6956-4D79-B8E5-B2D0C79FAE88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.4\\\\(1\\\\)\",\"versionEndExcluding\":\"10.4\\\\(2\\\\)\",\"matchCriteriaId\":\"BE71D34C-227A-4789-BA4D-79E5FDE311DB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3016:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"528ED62B-D739-4E06-AC64-B506FD73BBAB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3016q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2D402AB0-BCFB-4F42-8C50-5DC930AEEC8B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3048:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC2A6C31-438A-4CF5-A3F3-364B1672EB7D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76C10D85-88AC-4A79-8866-BED88A0F8DF8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064-32t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09AC2BAD-F536-48D0-A2F0-D4E290519EB6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064-t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65CB7F6D-A82B-4A31-BFAC-FF4A4B8DF9C1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ECC4FFCC-E886-49BC-9737-5B5BA2AAB14B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F4E8EE4-031D-47D3-A12E-EE5F792172EE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3064x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"00CDD8C3-67D5-4E9F-9D48-A77B55DB0AB1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41C14CC9-C244-4B86-AEA6-C50BAD5DA9A6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3100-v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8FF2EC4-0C09-4C00-9956-A2A4A894F63D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3100-z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D14D4B4E-120E-4607-A4F1-447C7BF3052E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3100v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15702ACB-29F3-412D-8805-E107E0729E35\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_31108pc-v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E930332-CDDD-48D5-93BC-C22D693BBFA2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_31108pv-v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"29B34855-D8D2-4114-80D2-A4D159C62458\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_31108tc-v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BF4B8FE-E134-4491-B5C2-C1CFEB64731B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_31128pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4226DA0-9371-401C-8247-E6E636A116C3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132c-z:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7664666F-BCE4-4799-AEEA-3A73E6AD33F4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3DBBFE9-835C-4411-8492-6006E74BAC65\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132q-v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3293438-3D18-45A2-B093-2C3F65783336\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132q-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C97C29EE-9426-4BBE-8D84-AB5FF748703D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132q-x\\\\/3132q-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E142C18F-9FB5-4D96-866A-141D7D16CAF7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3132q-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F43B770-D96C-44EA-BC12-9F39FC4317B9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3164q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA782EB3-E8E6-4DCF-B39C-B3CBD46E4384\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7817F4E6-B2DA-4F06-95A4-AF329F594C02\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CED628B5-97A8-4B26-AA40-BEC854982157\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172pq-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7BB9DD73-E31D-4921-A6D6-E14E04703588\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172pq\\\\/pq-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EFC116A-627F-4E05-B631-651D161217C8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172tq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4532F513-0543-4960-9877-01F23CA7BA1B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172tq-32t:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B43502B-FD53-465A-B60F-6A359C6ACD99\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3172tq-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3229124-B097-4AAC-8ACD-2F9C89DCC3AB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32A532C0-B0E3-484A-B356-88970E7D0248\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3232:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C84D24C-2256-42AF-898A-221EBE9FE1E4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3232c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"652A2849-668D-4156-88FB-C19844A59F33\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3232c_:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D008CA1C-6F5A-40EA-BB12-A9D84D5AF700\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3264c-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24FBE87B-8A4F-43A8-98A3-4A7D9C630937\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3264q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6ACD09AC-8B28-4ACB-967B-AB3D450BC137\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43913A0E-50D5-47DD-94D8-DD3391633619\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3408-s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D397349-CCC6-479B-9273-FB1FFF4F34F2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_34180yc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC7286A7-780F-4A45-940A-4AD5C9D0F201\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_34200yc-sm:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA52D5C1-13D8-4D23-B022-954CCEF491F1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3432d-s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F7AF8D7-431B-43CE-840F-CC0817D159C0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3464c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAC204C8-1A5A-4E85-824E-DC9B8F6A802D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8E1073F-D374-4311-8F12-AD8C72FAA293\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3524:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EAF5AF71-15DF-4151-A1CF-E138A7103FC8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3524-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10F80A72-AD54-4699-B8AE-82715F0B58E2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3524-x\\\\/xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E505C0B1-2119-4C6A-BF96-C282C633D169\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3524-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9354B6A2-D7D6-442E-BF4C-FE8A336D9E94\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3548:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"088C0323-683A-44F5-8D42-FF6EC85D080E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3548-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74CB4002-7636-4382-B33E-FBA060A13C34\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3548-x\\\\/xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"915EF8F6-6039-4DD0-B875-30D911752B74\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3548-xl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10CEBF73-3EE0-459A-86C5-F8F6243FE27C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97217080-455C-48E4-8CE1-6D5B9485864F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_36180yc-r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"95D2C4C3-65CE-4612-A027-AF70CEFC3233\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_3636c-r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"57572E4A-78D5-4D1A-938B-F05F01759612\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"10.2\\\\(7\\\\)\",\"matchCriteriaId\":\"EEB32D2E-AD9D-44A0-AEF7-689F7D2605C9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.3\\\\(1\\\\)\",\"versionEndExcluding\":\"10.3\\\\(5\\\\)\",\"matchCriteriaId\":\"0A236A0A-6956-4D79-B8E5-B2D0C79FAE88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.4\\\\(1\\\\)\",\"versionEndExcluding\":\"10.4\\\\(2\\\\)\",\"matchCriteriaId\":\"BE71D34C-227A-4789-BA4D-79E5FDE311DB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9000v:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0CD9C1F1-8582-4F67-A77D-97CBFECB88B8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"532CE4B0-A3C9-4613-AAAF-727817D06FB4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9200yc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24CA1A59-2681-4507-AC74-53BD481099B9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92160yc-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4283E433-7F8C-4410-B565-471415445811\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92160yc_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF9147C9-5D8B-40F5-9AAA-66A3495A0AD8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9221c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FFB9FDE8-8533-4F65-BF32-4066D042B2F7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92300yc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F80AB6FB-32FD-43D7-A9F1-80FA47696210\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92300yc_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3AA5389A-8AD1-476E-983A-54DF573C30F5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92304qc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5B2E4C1-2627-4B9D-8E92-4B483F647651\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92304qc_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1B1A8F1-45B1-4E64-A254-7191FA93CB6D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9232e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83DA8BFA-D7A2-476C-A6F5-CAE610033BC2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_92348gc-x:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"557ED31C-C26A-4FAE-8B14-D06B49F7F08B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9236c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"11411BFD-3F4D-4309-AB35-A3629A360FB0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9236c_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB2FFD26-8255-4351-8594-29D2AEFC06EF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9272q:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E663DE91-C86D-48DC-B771-FA72A8DF7A7C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9272q_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61E10975-B47E-4F4D-8096-AEC7B7733612\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"92E2CB2B-DA11-4CF7-9D57-3D4D48990DC0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A90184B3-C82F-4CE5-B2AD-97D5E4690871\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-ex-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40E40F42-632A-47DF-BE33-DC25B826310B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-ex_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2C67B7A6-9BB2-41FC-8FA3-8D0DF67CBC68\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AB89849-6DA4-4C9D-BC3F-EE0E41FD1901\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C47F6BF9-2ADB-41A4-8D7D-8BB00141BB23\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx3h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16C64136-89C2-443C-AF7B-BED81D3DE25A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93108tc-fx3p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBEF7F26-BB47-44BD-872E-130820557C23\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07DE6F63-2C7D-415B-8C34-01EC05C062F3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93120tx_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"182000E0-8204-4D8B-B7DE-B191AFE12E28\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93128:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F309E7B9-B828-4CD2-9D2B-8966EE5B9CC1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F423E45D-A6DD-4305-9C6A-EAB26293E53A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93128tx_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDC208BC-7E19-48C6-A20E-A79A51B7362C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9316d-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"102F91CD-DFB6-43D4-AE5B-DA157A696230\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180lc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E952A96A-0F48-4357-B7DD-1127D8827650\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180lc-ex_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"084D0191-563B-4FF0-B589-F35DA118E1C6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180tc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B7DB6FC5-762A-4F16-AE8C-69330EFCF640\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-ex:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F70D81F1-8B12-4474-9060-B4934D8A3873\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-ex-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5394DE31-3863-4CA9-B7B1-E5227183100D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-ex_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"968390BC-B430-4903-B614-13104BFAE635\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7349D69B-D8FA-4462-AA28-69DD18A652D9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx-24:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE4BB834-2C00-4384-A78E-AF3BCDDC58AF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0D30D52-837F-4FDA-B8E5-A9066E9C6D2F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx3h:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6678B8A-D905-447E-BE7E-6BFB4CC5DAFE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93180yc-fx3s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CE49B45-F2E9-491D-9C29-1B46E9CE14E2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93216tc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1CC5F78-E88B-4B82-9E3E-C73D3A49DE26\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93240tc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4BFAD21E-59EE-4CCE-8F1E-621D2EA50905\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93240yc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"91231DC6-2773-4238-8C14-A346F213B5E5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2DF88547-BAF4-47B0-9F60-80A30297FCEB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332d-gx2b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"02C3CE6D-BD54-48B1-A188-8E53DA001424\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332d-h2r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"498991F7-39D6-428C-8C7D-DD8DC72A0346\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"113772B6-E9D2-4094-9468-3F4E1A87D07D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9332pq_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F7B90D36-5124-4669-8462-4EAF35B0F53D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93360yc-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C45A38D6-BED6-4FEF-AD87-A1E813695DE0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336c-fx2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1FC2B1F-232E-4754-8076-CC82F3648730\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336c-fx2-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7CDD27C9-5EAF-4956-8AB7-740C84C9D4FC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5F1127D2-12C0-454F-91EF-5EE334070D06\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336pq_aci:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D6EB963-E0F2-4A02-8765-AB2064BE19E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"785FD17C-F32E-4042-9DDE-A89B3AAE0334\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9336pq_aci_spine_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEAAF99B-5406-4722-81FB-A91CBAC2DF41\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9348d-gx2a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73DC1E93-561E-490C-AE0E-B02BAB9A7C8E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9348gc-fx3:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12DA2DE5-8ADA-4D6A-BC1A-9C06FA163B1C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9348gc-fxp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"17C7E3DB-8E1A-47AD-B1C5-61747DC0CFB9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_93600cd-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2CF467E2-4567-426E-8F48-39669E0F514C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9364c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63842B25-8C32-4988-BBBD-61E9CB09B4F3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9364c-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68EA1FEF-B6B6-49FE-A0A4-5387F76303F8\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9364d-gx2a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"40D6DB7F-C025-4971-9615-73393ED61078\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4364ADB9-8162-451D-806A-B98924E6B2CF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B53BCB42-ED61-4FCF-8068-CB467631C63C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px-e_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"737C724A-B6CD-4FF7-96E0-EBBF645D660E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372px_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7067AEC7-DFC8-4437-9338-C5165D9A8F36\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49E0371B-FDE2-473C-AA59-47E1269D050F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx-e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"489D11EC-5A18-4F32-BC7C-AC1FCEC27222\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx-e_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"71D4CF15-B293-4403-A1A9-96AD3933BAEF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9372tx_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DBCC1515-2DBE-4DF2-8E83-29A869170F36\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BC5293E-F2B4-46DC-85DA-167EA323FCFD\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396px_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7282AAFF-ED18-4992-AC12-D953C35EC328\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA022E77-6557-4A33-9A3A-D028E2DB669A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9396tx_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"360409CC-4172-4878-A76B-EA1C1F8C7A79\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9408:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D8D5D5E2-B40B-475D-9EF3-8441016E37E9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9432pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDA8E1F0-74A6-4725-B6AA-A1112EFC5D0C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63BE0266-1C00-4D6A-AD96-7F82532ABAA7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_16-slot:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"73F59A4B-AE92-4533-8EDC-D1DD850309FF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_4-slot:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"492A2C86-DD38-466B-9965-77629A73814F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_8-slot:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FB7AA46-4018-4925-963E-719E1037F759\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_supervisor_a:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31B9D1E4-10B9-4B6F-B848-D93ABF6486D6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_supervisor_a\\\\+:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB270C45-756E-400A-979F-D07D750C881A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_supervisor_b:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E8A085C-2DBA-4269-AB01-B16019FBB4DA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500_supervisor_b\\\\+:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A79DD582-AF68-44F1-B640-766B46EF2BE2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9500r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B04484DA-AA59-4833-916E-6A8C96D34F0D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9504:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"768BE390-5ED5-48A7-9E80-C4DE8BA979B1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9504_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D07B5399-44C7-468D-9D57-BB5B5E26CE50\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9508:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDC2F709-AFBE-48EA-A3A2-DA1134534FB6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9508_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B76FB64F-16F0-4B0B-B304-B46258D434BA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9516:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E02DC82-0D26-436F-BA64-73C958932B0A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9516_switch:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2E128053-834B-4DD5-A517-D14B4FC2B56F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9536pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"163743A1-09E7-4EC5-8ECA-79E4B9CE173B\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9636pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE340E4C-DC48-4FC8-921B-EE304DB5AE0A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9716d-gx:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C367BBE0-D71F-4CB5-B50E-72B033E73FE1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9736pq:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"85E1D224-4751-4233-A127-A041068C804A\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9800:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD31B075-01B1-429E-83F4-B999356A0EB9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9804:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A10C9C0A-C96A-4B45-90D0-6ED457EB5F4C\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:nexus_9808:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3284D16F-3275-4F8D-8AE4-D413DE19C4FA\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/10/6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/10/7\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/13/4\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/13/9\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/18/4\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/18/8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/19/6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/20/8\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/cve-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://blog.vespa.ai/cve-2023-44487/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.proxmox.com/show_bug.cgi?id=4988\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2242803\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1216123\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack\",\"source\":\"cve@mitre.org\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve\",\"source\":\"cve@mitre.org\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/Azure/AKS/issues/3947\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/Kong/kong/discussions/11741\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/advisories/GHSA-qppj-fm5r-hxr3\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/advisories/GHSA-vx74-f528-fxqg\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/akka/akka-http/issues/4323\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/alibaba/tengine/issues/1872\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/apisix/issues/10320\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/httpd-site/pull/10\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/apache/trafficserver/pull/10564\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/bcdannyboy/CVE-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/caddyserver/caddy/issues/5877\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/caddyserver/caddy/releases/tag/v2.7.5\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/dotnet/announcements/issues/277\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/eclipse/jetty.project/issues/10679\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/envoyproxy/envoy/pull/30055\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/etcd-io/etcd/issues/16740\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/facebook/proxygen/pull/466\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/golang/go/issues/63417\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/grpc/grpc-go/pull/6703\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/grpc/grpc/releases/tag/v1.59.2\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://github.com/h2o/h2o/pull/3291\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/haproxy/haproxy/issues/2312\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244\",\"source\":\"cve@mitre.org\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/junkurihara/rust-rpxy/issues/97\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/kazu-yamamoto/http2/issues/93\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/kubernetes/kubernetes/pull/121120\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/line/armeria/pull/5232\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/micrictor/http2-rst-stream\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/microsoft/CBL-Mariner/pull/6381\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/nghttp2/nghttp2/pull/1961\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ninenines/cowboy/issues/1615\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/nodejs/node/pull/50121\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/openresty/openresty/issues/930\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/opensearch-project/data-prepper/issues/3474\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/oqtane/oqtane.framework/discussions/3367\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/projectcontour/contour/pull/5826\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/tempesta-tech/tempesta/issues/1986\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/varnishcache/varnish-cache/issues/3996\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://istio.io/latest/news/security/istio-security-2023-004/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://my.f5.com/manage/s/article/K000137106\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://netty.io/news/2023/10/10/4-1-100-Final.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=37830987\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=37830998\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Press/Media Coverage\"]},{\"url\":\"https://news.ycombinator.com/item?id=37831062\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=37837043\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20231016-0001/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240426-0007/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0007/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.paloaltonetworks.com/CVE-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://ubuntu.com/security/CVE-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5521\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5522\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5540\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5549\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5558\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5570\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/10/10/6\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/13/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/13/9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/18/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/18/8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/19/6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2023/10/20/8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2025/08/13/6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/cve-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://blog.vespa.ai/cve-2023-44487/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.proxmox.com/show_bug.cgi?id=4988\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2242803\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.suse.com/show_bug.cgi?id=1216123\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Technical Description\",\"Vendor Advisory\"]},{\"url\":\"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/Azure/AKS/issues/3947\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/Kong/kong/discussions/11741\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/advisories/GHSA-qppj-fm5r-hxr3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/advisories/GHSA-vx74-f528-fxqg\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/akka/akka-http/issues/4323\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/alibaba/tengine/issues/1872\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/apisix/issues/10320\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/httpd-site/pull/10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/apache/trafficserver/pull/10564\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/bcdannyboy/CVE-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/caddyserver/caddy/issues/5877\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/caddyserver/caddy/releases/tag/v2.7.5\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/dotnet/announcements/issues/277\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\",\"Release Notes\"]},{\"url\":\"https://github.com/eclipse/jetty.project/issues/10679\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/envoyproxy/envoy/pull/30055\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/etcd-io/etcd/issues/16740\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/facebook/proxygen/pull/466\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/golang/go/issues/63417\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/grpc/grpc-go/pull/6703\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/h2o/h2o/pull/3291\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://github.com/haproxy/haproxy/issues/2312\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Product\"]},{\"url\":\"https://github.com/junkurihara/rust-rpxy/issues/97\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/kazu-yamamoto/http2/issues/93\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/kubernetes/kubernetes/pull/121120\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/line/armeria/pull/5232\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/micrictor/http2-rst-stream\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/microsoft/CBL-Mariner/pull/6381\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"https://github.com/nghttp2/nghttp2/pull/1961\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://github.com/ninenines/cowboy/issues/1615\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/nodejs/node/pull/50121\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/openresty/openresty/issues/930\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/opensearch-project/data-prepper/issues/3474\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/oqtane/oqtane.framework/discussions/3367\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/projectcontour/contour/pull/5826\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\"]},{\"url\":\"https://github.com/tempesta-tech/tempesta/issues/1986\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://github.com/varnishcache/varnish-cache/issues/3996\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://istio.io/latest/news/security/istio-security-2023-004/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://my.f5.com/manage/s/article/K000137106\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://netty.io/news/2023/10/10/4-1-100-Final.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://news.ycombinator.com/item?id=37830987\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=37830998\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Press/Media Coverage\"]},{\"url\":\"https://news.ycombinator.com/item?id=37831062\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://news.ycombinator.com/item?id=37837043\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\"]},{\"url\":\"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202311-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20231016-0001/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240426-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0007/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.paloaltonetworks.com/CVE-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\"]},{\"url\":\"https://ubuntu.com/security/CVE-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5521\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5522\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Vendor Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5540\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5558\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2023/dsa-5570\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"Vendor Advisory\"]},{\"url\":\"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mitigation\",\"Vendor Advisory\"]},{\"url\":\"https://www.openwall.com/lists/oss-security/2023/10/10/6\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\"]},{\"url\":\"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Press/Media Coverage\",\"Third Party Advisory\"]},{\"url\":\"https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-082556.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-341067.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-784301.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-832273.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\",\"source\":\"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=37831062\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/envoyproxy/envoy/pull/30055\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/haproxy/haproxy/issues/2312\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/eclipse/jetty.project/issues/10679\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/nghttp2/nghttp2/pull/1961\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/alibaba/tengine/issues/1872\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=37830987\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=37830998\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/caddyserver/caddy/issues/5877\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/bcdannyboy/CVE-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/grpc/grpc-go/pull/6703\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://my.f5.com/manage/s/article/K000137106\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.proxmox.com/show_bug.cgi?id=4988\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/microsoft/CBL-Mariner/pull/6381\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/facebook/proxygen/pull/466\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/micrictor/http2-rst-stream\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/h2o/h2o/pull/3291\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/nodejs/node/pull/50121\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/dotnet/announcements/issues/277\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/golang/go/issues/63417\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/advisories/GHSA-vx74-f528-fxqg\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/trafficserver/pull/10564\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/10/10/6\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/opensearch-project/data-prepper/issues/3474\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/kubernetes/kubernetes/pull/121120\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/oqtane/oqtane.framework/discussions/3367\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://netty.io/news/2023/10/10/4-1-100-Final.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://news.ycombinator.com/item?id=37837043\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/kazu-yamamoto/http2/issues/93\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5522\", \"name\": \"DSA-5522\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5521\", \"name\": \"DSA-5521\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/ninenines/cowboy/issues/1615\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/varnishcache/varnish-cache/issues/3996\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/tempesta-tech/tempesta/issues/1986\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://blog.vespa.ai/cve-2023-44487/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/etcd-io/etcd/issues/16740\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://istio.io/latest/news/security/istio-security-2023-004/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/junkurihara/rust-rpxy/issues/97\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1216123\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2242803\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://ubuntu.com/security/CVE-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/advisories/GHSA-qppj-fm5r-hxr3\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/httpd-site/pull/10\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/projectcontour/contour/pull/5826\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/line/armeria/pull/5232\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.paloaltonetworks.com/CVE-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/akka/akka-http/issues/4323\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/openresty/openresty/issues/930\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/apache/apisix/issues/10320\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/Azure/AKS/issues/3947\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/Kong/kong/discussions/11741\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://github.com/caddyserver/caddy/releases/tag/v2.7.5\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html\", \"name\": \"[debian-lts-announce] 20231013 [SECURITY] [DLA 3617-1] tomcat9 security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/13/4\", \"name\": \"[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/13/9\", \"name\": \"[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/\", \"name\": \"FEDORA-2023-ed2642fd58\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html\", \"name\": \"[debian-lts-announce] 20231016 [SECURITY] [DLA 3621-1] nghttp2 security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20231016-0001/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html\", \"name\": \"[debian-lts-announce] 20231016 [SECURITY] [DLA 3617-2] tomcat9 regression update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/18/4\", \"name\": \"[oss-security] 20231018 Vulnerability in Jenkins\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/18/8\", \"name\": \"[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/19/6\", \"name\": \"[oss-security] 20231019 CVE-2023-45802: Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/\", \"name\": \"FEDORA-2023-54fadada12\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/\", \"name\": \"FEDORA-2023-5ff7bf1dd8\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/20/8\", \"name\": \"[oss-security] 20231020 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/\", \"name\": \"FEDORA-2023-17efd3f2cd\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/\", \"name\": \"FEDORA-2023-d5030c983c\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/\", \"name\": \"FEDORA-2023-0259c3f26f\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/\", \"name\": \"FEDORA-2023-2a9214af5f\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/\", \"name\": \"FEDORA-2023-e9c04d81c1\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/\", \"name\": \"FEDORA-2023-f66fc0f62a\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/\", \"name\": \"FEDORA-2023-4d2fd884ea\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/\", \"name\": \"FEDORA-2023-b2c50535cb\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\", \"name\": \"FEDORA-2023-fe53e13b5b\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\", \"name\": \"FEDORA-2023-4bf641255e\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html\", \"name\": \"[debian-lts-announce] 20231030 [SECURITY] [DLA 3641-1] jetty9 security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5540\", \"name\": \"DSA-5540\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html\", \"name\": \"[debian-lts-announce] 20231031 [SECURITY] [DLA 3638-1] h2o security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/\", \"name\": \"FEDORA-2023-1caffb88af\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/\", \"name\": \"FEDORA-2023-3f70b8d406\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/\", \"name\": \"FEDORA-2023-7b52921cae\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/\", \"name\": \"FEDORA-2023-7934802344\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/\", \"name\": \"FEDORA-2023-dbe64661af\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\", \"name\": \"FEDORA-2023-822aab0a5a\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html\", \"name\": \"[debian-lts-announce] 20231105 [SECURITY] [DLA 3645-1] trafficserver security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5549\", \"name\": \"DSA-5549\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/\", \"name\": \"FEDORA-2023-c0c6a91330\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/\", \"name\": \"FEDORA-2023-492b7be466\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5558\", \"name\": \"DSA-5558\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html\", \"name\": \"[debian-lts-announce] 20231119 [SECURITY] [DLA 3656-1] netty security update\", \"tags\": [\"mailing-list\", \"x_transferred\"]}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\", \"name\": \"GLSA-202311-09\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5570\", \"name\": \"DSA-5570\", \"tags\": [\"vendor-advisory\", \"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240426-0007/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0007/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.vicarius.io/vsociety/posts/rapid-reset-cve-2023-44487-dos-in-http2-understanding-the-root-cause\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2025/08/13/6\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T21:08:27.383Z\"}}, {\"affected\": [{\"vendor\": \"Siemens\", \"product\": \"RUGGEDCOM APE1808\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SINEC NMS\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"V3.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"vendor\": \"Siemens\", \"product\": \"SIPLUS S7-1500 CPU 1518-4 PN/DP MFP\", \"versions\": [{\"status\": \"affected\", \"version\": \"V3.1.5\", \"lessThan\": \"*\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"x_adpType\": \"supplier\", \"references\": [{\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-832273.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-341067.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-784301.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-915275.html\"}, {\"url\": \"https://cert-portal.siemens.com/productcert/html/ssa-082556.html\"}], \"providerMetadata\": {\"orgId\": \"0b142b55-0307-4c5a-b3c9-f314f3fb7c5e\", \"shortName\": \"siemens-SADP\", \"dateUpdated\": \"2026-05-12T10:52:23.784Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-44487\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-07-23T20:34:21.334116Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2023-10-10\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:ietf:http:2.0:*:*:*:*:*:*:*\"], \"vendor\": \"ietf\", \"product\": \"http\", \"versions\": [{\"status\": \"affected\", \"version\": \"2.0\"}], \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2023-10-10T00:00:00.000Z\", \"value\": \"CVE-2023-44487 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-44487\", \"tags\": [\"government-resource\"]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-400\", \"description\": \"CWE-400 Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-07-16T18:31:22.372Z\"}}], \"cna\": {\"affected\": [{\"vendor\": \"n/a\", \"product\": \"n/a\", \"versions\": [{\"status\": \"affected\", \"version\": \"n/a\"}]}], \"references\": [{\"url\": \"https://github.com/dotnet/core/blob/e4613450ea0da7fd2fc6b61dfb2c1c1dec1ce9ec/release-notes/6.0/6.0.23/6.0.23.md?plain=1#L73\"}, {\"url\": \"https://blog.cloudflare.com/technical-breakdown-http2-rapid-reset-ddos-attack/\"}, {\"url\": \"https://aws.amazon.com/security/security-bulletins/AWS-2023-011/\"}, {\"url\": \"https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack\"}, {\"url\": \"https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\"}, {\"url\": \"https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/\"}, {\"url\": \"https://news.ycombinator.com/item?id=37831062\"}, {\"url\": \"https://blog.cloudflare.com/zero-day-rapid-reset-http2-record-breaking-ddos-attack/\"}, {\"url\": \"https://www.phoronix.com/news/HTTP2-Rapid-Reset-Attack\"}, {\"url\": \"https://github.com/envoyproxy/envoy/pull/30055\"}, {\"url\": \"https://github.com/haproxy/haproxy/issues/2312\"}, {\"url\": \"https://github.com/eclipse/jetty.project/issues/10679\"}, {\"url\": \"https://forums.swift.org/t/swift-nio-http2-security-update-cve-2023-44487-http-2-dos/67764\"}, {\"url\": \"https://github.com/nghttp2/nghttp2/pull/1961\"}, {\"url\": \"https://github.com/netty/netty/commit/58f75f665aa81a8cbcf6ffa74820042a285c5e61\"}, {\"url\": \"https://github.com/alibaba/tengine/issues/1872\"}, {\"url\": \"https://github.com/apache/tomcat/tree/main/java/org/apache/coyote/http2\"}, {\"url\": \"https://news.ycombinator.com/item?id=37830987\"}, {\"url\": \"https://news.ycombinator.com/item?id=37830998\"}, {\"url\": \"https://github.com/caddyserver/caddy/issues/5877\"}, {\"url\": \"https://www.bleepingcomputer.com/news/security/new-http-2-rapid-reset-zero-day-attack-breaks-ddos-records/\"}, {\"url\": \"https://github.com/bcdannyboy/CVE-2023-44487\"}, {\"url\": \"https://github.com/grpc/grpc-go/pull/6703\"}, {\"url\": \"https://github.com/icing/mod_h2/blob/0a864782af0a942aa2ad4ed960a6b32cd35bcf0a/mod_http2/README.md?plain=1#L239-L244\"}, {\"url\": \"https://github.com/nghttp2/nghttp2/releases/tag/v1.57.0\"}, {\"url\": \"https://mailman.nginx.org/pipermail/nginx-devel/2023-October/S36Q5HBXR7CAIMPLLPRSSSYR4PCMWILK.html\"}, {\"url\": \"https://my.f5.com/manage/s/article/K000137106\"}, {\"url\": \"https://msrc.microsoft.com/blog/2023/10/microsoft-response-to-distributed-denial-of-service-ddos-attacks-against-http/2/\"}, {\"url\": \"https://bugzilla.proxmox.com/show_bug.cgi?id=4988\"}, {\"url\": \"https://cgit.freebsd.org/ports/commit/?id=c64c329c2c1752f46b73e3e6ce9f4329be6629f9\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/10/7\", \"name\": \"[oss-security] 20231010 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/10/6\", \"name\": \"[oss-security] 20231010 CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://seanmonstar.com/post/730794151136935936/hyper-http2-rapid-reset-unaffected\"}, {\"url\": \"https://github.com/microsoft/CBL-Mariner/pull/6381\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/iNNxDTCjZvo\"}, {\"url\": \"https://github.com/facebook/proxygen/pull/466\"}, {\"url\": \"https://gist.github.com/adulau/7c2bfb8e9cdbe4b35a5e131c66a0c088\"}, {\"url\": \"https://github.com/micrictor/http2-rst-stream\"}, {\"url\": \"https://edg.io/lp/blog/resets-leaks-ddos-and-the-tale-of-a-hidden-cve\"}, {\"url\": \"https://openssf.org/blog/2023/10/10/http-2-rapid-reset-vulnerability-highlights-need-for-rapid-response/\"}, {\"url\": \"https://github.com/h2o/h2o/security/advisories/GHSA-2m7v-gc89-fjqf\"}, {\"url\": \"https://github.com/h2o/h2o/pull/3291\"}, {\"url\": \"https://github.com/nodejs/node/pull/50121\"}, {\"url\": \"https://github.com/dotnet/announcements/issues/277\"}, {\"url\": \"https://github.com/golang/go/issues/63417\"}, {\"url\": \"https://github.com/advisories/GHSA-vx74-f528-fxqg\"}, {\"url\": \"https://github.com/apache/trafficserver/pull/10564\"}, {\"url\": \"https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-44487\"}, {\"url\": \"https://tomcat.apache.org/security-10.html#Fixed_in_Apache_Tomcat_10.1.14\"}, {\"url\": \"https://lists.apache.org/thread/5py8h42mxfsn8l1wy6o41xwhsjlsd87q\"}, {\"url\": \"https://www.openwall.com/lists/oss-security/2023/10/10/6\"}, {\"url\": \"https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\"}, {\"url\": \"https://github.com/opensearch-project/data-prepper/issues/3474\"}, {\"url\": \"https://github.com/kubernetes/kubernetes/pull/121120\"}, {\"url\": \"https://github.com/oqtane/oqtane.framework/discussions/3367\"}, {\"url\": \"https://github.com/advisories/GHSA-xpw8-rcwv-8f8p\"}, {\"url\": \"https://netty.io/news/2023/10/10/4-1-100-Final.html\"}, {\"url\": \"https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487\"}, {\"url\": \"https://www.theregister.com/2023/10/10/http2_rapid_reset_zeroday/\"}, {\"url\": \"https://blog.qualys.com/vulnerabilities-threat-research/2023/10/10/cve-2023-44487-http-2-rapid-reset-attack\"}, {\"url\": \"https://news.ycombinator.com/item?id=37837043\"}, {\"url\": \"https://github.com/kazu-yamamoto/http2/issues/93\"}, {\"url\": \"https://martinthomson.github.io/h2-stream-limits/draft-thomson-httpbis-h2-stream-limits.html\"}, {\"url\": \"https://github.com/kazu-yamamoto/http2/commit/f61d41a502bd0f60eb24e1ce14edc7b6df6722a1\"}, {\"url\": \"https://github.com/apache/httpd/blob/afcdbeebbff4b0c50ea26cdd16e178c0d1f24152/modules/http2/h2_mplx.c#L1101-L1113\"}, {\"url\": \"https://www.debian.org/security/2023/dsa-5522\", \"name\": \"DSA-5522\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5521\", \"name\": \"DSA-5521\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/cve-2023-44487\"}, {\"url\": \"https://github.com/ninenines/cowboy/issues/1615\"}, {\"url\": \"https://github.com/varnishcache/varnish-cache/issues/3996\"}, {\"url\": \"https://github.com/tempesta-tech/tempesta/issues/1986\"}, {\"url\": \"https://blog.vespa.ai/cve-2023-44487/\"}, {\"url\": \"https://github.com/etcd-io/etcd/issues/16740\"}, {\"url\": \"https://www.darkreading.com/cloud/internet-wide-zero-day-bug-fuels-largest-ever-ddos-event\"}, {\"url\": \"https://istio.io/latest/news/security/istio-security-2023-004/\"}, {\"url\": \"https://github.com/junkurihara/rust-rpxy/issues/97\"}, {\"url\": \"https://bugzilla.suse.com/show_bug.cgi?id=1216123\"}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2242803\"}, {\"url\": \"https://ubuntu.com/security/CVE-2023-44487\"}, {\"url\": \"https://community.traefik.io/t/is-traefik-vulnerable-to-cve-2023-44487/20125\"}, {\"url\": \"https://github.com/advisories/GHSA-qppj-fm5r-hxr3\"}, {\"url\": \"https://github.com/apache/httpd-site/pull/10\"}, {\"url\": \"https://github.com/projectcontour/contour/pull/5826\"}, {\"url\": \"https://github.com/linkerd/website/pull/1695/commits/4b9c6836471bc8270ab48aae6fd2181bc73fd632\"}, {\"url\": \"https://github.com/line/armeria/pull/5232\"}, {\"url\": \"https://blog.litespeedtech.com/2023/10/11/rapid-reset-http-2-vulnerablilty/\"}, {\"url\": \"https://security.paloaltonetworks.com/CVE-2023-44487\"}, {\"url\": \"https://github.com/akka/akka-http/issues/4323\"}, {\"url\": \"https://github.com/openresty/openresty/issues/930\"}, {\"url\": \"https://github.com/apache/apisix/issues/10320\"}, {\"url\": \"https://github.com/Azure/AKS/issues/3947\"}, {\"url\": \"https://github.com/Kong/kong/discussions/11741\"}, {\"url\": \"https://github.com/arkrwn/PoC/tree/main/CVE-2023-44487\"}, {\"url\": \"https://www.netlify.com/blog/netlify-successfully-mitigates-cve-2023-44487/\"}, {\"url\": \"https://github.com/caddyserver/caddy/releases/tag/v2.7.5\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00020.html\", \"name\": \"[debian-lts-announce] 20231013 [SECURITY] [DLA 3617-1] tomcat9 security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/13/4\", \"name\": \"[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/13/9\", \"name\": \"[oss-security] 20231013 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://arstechnica.com/security/2023/10/how-ddosers-used-the-http-2-protocol-to-deliver-attacks-of-unprecedented-size/\"}, {\"url\": \"https://lists.w3.org/Archives/Public/ietf-http-wg/2023OctDec/0025.html\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JMEXY22BFG5Q64HQCM5CK2Q7KDKVV4TY/\", \"name\": \"FEDORA-2023-ed2642fd58\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://linkerd.io/2023/10/12/linkerd-cve-2023-44487/\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00023.html\", \"name\": \"[debian-lts-announce] 20231016 [SECURITY] [DLA 3621-1] nghttp2 security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20231016-0001/\"}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00024.html\", \"name\": \"[debian-lts-announce] 20231016 [SECURITY] [DLA 3617-2] tomcat9 regression update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/18/4\", \"name\": \"[oss-security] 20231018 Vulnerability in Jenkins\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/18/8\", \"name\": \"[oss-security] 20231018 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/19/6\", \"name\": \"[oss-security] 20231019 CVE-2023-45802: Apache HTTP Server: HTTP/2 stream memory not reclaimed right away on RST\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZKQSIKIAT5TJ3WSLU3RDBQ35YX4GY4V3/\", \"name\": \"FEDORA-2023-54fadada12\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/JIZSEFC3YKCGABA2BZW6ZJRMDZJMB7PJ/\", \"name\": \"FEDORA-2023-5ff7bf1dd8\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2023/10/20/8\", \"name\": \"[oss-security] 20231020 Re: CVE-2023-44487: HTTP/2 Rapid Reset attack against many implementations\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WLPRQ5TWUQQXYWBJM7ECYDAIL2YVKIUH/\", \"name\": \"FEDORA-2023-17efd3f2cd\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/E72T67UPDRXHIDLO3OROR25YAMN4GGW5/\", \"name\": \"FEDORA-2023-d5030c983c\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/BFQD3KUEMFBHPAPBGLWQC34L4OWL5HAZ/\", \"name\": \"FEDORA-2023-0259c3f26f\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZLU6U2R2IC2K64NDPNMV55AUAO65MAF4/\", \"name\": \"FEDORA-2023-2a9214af5f\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/X6QXN4ORIVF6XBW4WWFE7VNPVC74S45Y/\", \"name\": \"FEDORA-2023-e9c04d81c1\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LKYHSZQFDNR7RSA7LHVLLIAQMVYCUGBG/\", \"name\": \"FEDORA-2023-f66fc0f62a\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/FNA62Q767CFAFHBCDKYNPBMZWB7TWYVU/\", \"name\": \"FEDORA-2023-4d2fd884ea\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LNMZJCDHGLJJLXO4OXWJMTVQRNWOC7UL/\", \"name\": \"FEDORA-2023-b2c50535cb\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/KSEGD2IWKNUO3DWY4KQGUQM5BISRWHQE/\", \"name\": \"FEDORA-2023-fe53e13b5b\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/CLB4TW7KALB3EEQWNWCN7OUIWWVWWCG2/\", \"name\": \"FEDORA-2023-4bf641255e\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00045.html\", \"name\": \"[debian-lts-announce] 20231030 [SECURITY] [DLA 3641-1] jetty9 security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5540\", \"name\": \"DSA-5540\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/10/msg00047.html\", \"name\": \"[debian-lts-announce] 20231031 [SECURITY] [DLA 3638-1] h2o security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://discuss.hashicorp.com/t/hcsec-2023-32-vault-consul-and-boundary-affected-by-http-2-rapid-reset-denial-of-service-vulnerability-cve-2023-44487/59715\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VHUHTSXLXGXS7JYKBXTA3VINUPHTNGVU/\", \"name\": \"FEDORA-2023-1caffb88af\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VSRDIV77HNKUSM7SJC5BKE5JSHLHU2NK/\", \"name\": \"FEDORA-2023-3f70b8d406\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3N4NJ7FR4X4FPZUGNTQAPSTVB2HB2Y4A/\", \"name\": \"FEDORA-2023-7b52921cae\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ZB43REMKRQR62NJEI7I5NQ4FSXNLBKRT/\", \"name\": \"FEDORA-2023-7934802344\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HT7T2R4MQKLIF4ODV4BDLPARWFPCJ5CZ/\", \"name\": \"FEDORA-2023-dbe64661af\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XFOIBB4YFICHDM7IBOP7PWXW3FX4HLL2/\", \"name\": \"FEDORA-2023-822aab0a5a\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/11/msg00001.html\", \"name\": \"[debian-lts-announce] 20231105 [SECURITY] [DLA 3645-1] trafficserver security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5549\", \"name\": \"DSA-5549\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/2MBEPPC36UBVOZZNAXFHKLFGSLCMN5LI/\", \"name\": \"FEDORA-2023-c0c6a91330\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/WE2I52RHNNU42PX6NZ2RBUHSFFJ2LVZX/\", \"name\": \"FEDORA-2023-492b7be466\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5558\", \"name\": \"DSA-5558\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2023/11/msg00012.html\", \"name\": \"[debian-lts-announce] 20231119 [SECURITY] [DLA 3656-1] netty security update\", \"tags\": [\"mailing-list\"]}, {\"url\": \"https://security.gentoo.org/glsa/202311-09\", \"name\": \"GLSA-202311-09\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://www.debian.org/security/2023/dsa-5570\", \"name\": \"DSA-5570\", \"tags\": [\"vendor-advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240426-0007/\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0007/\"}, {\"url\": \"https://github.com/grpc/grpc/releases/tag/v1.59.2\"}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http2-reset-d8Kf32vZ\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"text\", \"description\": \"n/a\"}]}], \"providerMetadata\": {\"orgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"shortName\": \"mitre\", \"dateUpdated\": \"2025-06-07T20:05:34.376Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-44487\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-12T10:52:23.784Z\", \"dateReserved\": \"2023-09-29T00:00:00.000Z\", \"assignerOrgId\": \"8254265b-2729-46b6-b9e3-3dfca2d5bfca\", \"datePublished\": \"2023-10-10T00:00:00.000Z\", \"assignerShortName\": \"mitre\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
RHSA-2023:5711
Vulnerability from csaf_redhat - Published: 2023-10-16 09:00 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: nginx security update
Severity
Moderate
Notes
Topic: An update for nginx is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
134 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for nginx is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5711",
"url": "https://access.redhat.com/errata/RHSA-2023:5711"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5711.json"
}
],
"title": "Red Hat Security Advisory: nginx security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:26+00:00",
"generator": {
"date": "2026-06-02T15:03:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5711",
"initial_release_date": "2023-10-16T09:00:03+00:00",
"revision_history": [
{
"date": "2023-10-16T09:00:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T09:00:03+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CRB (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"product": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"product_id": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-14.el9_2.1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"product": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"product_id": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-14.el9_2.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"product": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"product_id": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-14.el9_2.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-core-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-core-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-core@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"product": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"product_id": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-14.el9_2.1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-14.el9_2.1.src",
"product": {
"name": "nginx-1:1.20.1-14.el9_2.1.src",
"product_id": "nginx-1:1.20.1-14.el9_2.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-14.el9_2.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"product": {
"name": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"product_id": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-all-modules@1.20.1-14.el9_2.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"product": {
"name": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"product_id": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-filesystem@1.20.1-14.el9_2.1?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch"
},
"product_reference": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch"
},
"product_reference": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.src as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.src",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch"
},
"product_reference": "nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch"
},
"product_reference": "nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64 as a component of Red Hat Enterprise Linux CRB (v. 9)",
"product_id": "CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"relates_to_product_reference": "CRB-9.2.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T09:00:03+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5711"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"AppStream-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.src",
"CRB-9.2.0.Z.MAIN.EUS:nginx-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-core-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-14.el9_2.1.noarch",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-14.el9_2.1.x86_64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.aarch64",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.ppc64le",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.s390x",
"CRB-9.2.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-14.el9_2.1.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5712
Vulnerability from csaf_redhat - Published: 2023-10-16 09:09 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: nginx:1.20 security update
Severity
Moderate
Notes
Topic: An update for the nginx:1.20 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nginx:1.20 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5712",
"url": "https://access.redhat.com/errata/RHSA-2023:5712"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5712.json"
}
],
"title": "Red Hat Security Advisory: nginx:1.20 security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:31+00:00",
"generator": {
"date": "2026-06-02T15:03:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5712",
"initial_release_date": "2023-10-16T09:09:24+00:00",
"revision_history": [
{
"date": "2023-10-16T09:09:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T09:09:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=src\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"product": {
"name": "nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch (nginx:1.20)",
"product_id": "nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-all-modules@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"product": {
"name": "nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch (nginx:1.20)",
"product_id": "nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-filesystem@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.8.0%2B20359%2B9bd89172.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8080020231012034601:63b34585"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20"
},
"product_reference": "nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20"
},
"product_reference": "nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T09:09:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5712"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.src::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.noarch::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.aarch64::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.ppc64le::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.s390x::nginx:1.20",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.8.0+20359+9bd89172.1.x86_64::nginx:1.20"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5713
Vulnerability from csaf_redhat - Published: 2023-10-16 09:09 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: nginx:1.22 security update
Severity
Moderate
Notes
Topic: An update for the nginx:1.22 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nginx:1.22 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5713",
"url": "https://access.redhat.com/errata/RHSA-2023:5713"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5713.json"
}
],
"title": "Red Hat Security Advisory: nginx:1.22 security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:27+00:00",
"generator": {
"date": "2026-06-02T15:03:27+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5713",
"initial_release_date": "2023-10-16T09:09:24+00:00",
"revision_history": [
{
"date": "2023-10-16T09:09:24+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T09:09:24+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:27+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22)",
"product_id": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"product": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src (nginx:1.22)",
"product_id": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=src\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"product": {
"name": "nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch (nginx:1.22)",
"product_id": "nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-all-modules@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"product": {
"name": "nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch (nginx:1.22)",
"product_id": "nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-filesystem@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22)",
"product_id": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22)",
"product_id": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22)",
"product_id": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.22.1-1.module%2Bel8.8.0%2B20355%2B6d9c8a63.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.22:8080020231011224613:63b34585"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22"
},
"product_reference": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22"
},
"product_reference": "nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22"
},
"product_reference": "nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64 (nginx:1.22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T09:09:24+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5713"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.src::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-all-modules-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-debugsource-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-filesystem-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.noarch::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-devel-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-image-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-perl-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-mail-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.aarch64::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.ppc64le::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.s390x::nginx:1.22",
"AppStream-8.8.0.Z.MAIN.EUS:nginx-mod-stream-debuginfo-1:1.22.1-1.module+el8.8.0+20355+6d9c8a63.1.x86_64::nginx:1.22"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5714
Vulnerability from csaf_redhat - Published: 2023-10-16 08:59 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: nginx security update
Severity
Moderate
Notes
Topic: An update for nginx is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
118 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for nginx is now available for Red Hat Enterprise Linux 9.0 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5714",
"url": "https://access.redhat.com/errata/RHSA-2023:5714"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5714.json"
}
],
"title": "Red Hat Security Advisory: nginx security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:25+00:00",
"generator": {
"date": "2026-06-02T15:03:25+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5714",
"initial_release_date": "2023-10-16T08:59:33+00:00",
"revision_history": [
{
"date": "2023-10-16T08:59:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T08:59:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:25+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.0::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product": {
"name": "Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.0::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-10.el9_0.1.src",
"product": {
"name": "nginx-1:1.20.1-10.el9_0.1.src",
"product_id": "nginx-1:1.20.1-10.el9_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-10.el9_0.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"product": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"product_id": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-10.el9_0.1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"product": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"product_id": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-10.el9_0.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"product": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"product_id": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-10.el9_0.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"product": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"product_id": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-10.el9_0.1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"product": {
"name": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"product_id": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-all-modules@1.20.1-10.el9_0.1?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"product": {
"name": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"product_id": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-filesystem@1.20.1-10.el9_0.1?arch=noarch\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch"
},
"product_reference": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch"
},
"product_reference": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.0)",
"product_id": "AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.src as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.src",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch"
},
"product_reference": "nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch"
},
"product_reference": "nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64 as a component of Red Hat CodeReady Linux Builder EUS (v.9.0)",
"product_id": "CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"relates_to_product_reference": "CRB-9.0.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T08:59:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5714"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"AppStream-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"AppStream-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.src",
"CRB-9.0.0.Z.EUS:nginx-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-all-modules-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-debugsource-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-filesystem-1:1.20.1-10.el9_0.1.noarch",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-devel-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-1:1.20.1-10.el9_0.1.x86_64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.aarch64",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.ppc64le",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.s390x",
"CRB-9.0.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-10.el9_0.1.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5715
Vulnerability from csaf_redhat - Published: 2023-10-16 09:07 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: nginx:1.20 security update
Severity
Moderate
Notes
Topic: An update for the nginx:1.20 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
59 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nginx:1.20 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5715",
"url": "https://access.redhat.com/errata/RHSA-2023:5715"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5715.json"
}
],
"title": "Red Hat Security Advisory: nginx:1.20 security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:26+00:00",
"generator": {
"date": "2026-06-02T15:03:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5715",
"initial_release_date": "2023-10-16T09:07:14+00:00",
"revision_history": [
{
"date": "2023-10-16T09:07:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T09:07:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:8.6::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=aarch64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=src\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"product": {
"name": "nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch (nginx:1.20)",
"product_id": "nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-all-modules@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"product": {
"name": "nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch (nginx:1.20)",
"product_id": "nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-filesystem@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=noarch\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=ppc64le\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=s390x\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-debugsource@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-devel@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-image-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-perl-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-http-xslt-filter-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-mail-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
},
{
"category": "product_version",
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20)",
"product_id": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nginx-mod-stream-debuginfo@1.20.1-1.module%2Bel8.6.0%2B20350%2B58c16214.1?arch=x86_64\u0026epoch=1\u0026rpmmod=nginx:1.20:8060020231011172032:ad008a3a"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20"
},
"product_reference": "nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20"
},
"product_reference": "nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64 (nginx:1.20) as a component of Red Hat Enterprise Linux AppStream EUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
},
"product_reference": "nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"relates_to_product_reference": "AppStream-8.6.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T09:07:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5715"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.src::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-all-modules-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-debugsource-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-filesystem-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.noarch::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-devel-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-image-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-perl-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-http-xslt-filter-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-mail-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.aarch64::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.ppc64le::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.s390x::nginx:1.20",
"AppStream-8.6.0.Z.EUS:nginx-mod-stream-debuginfo-1:1.20.1-1.module+el8.6.0+20350+58c16214.1.x86_64::nginx:1.20"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5716
Vulnerability from csaf_redhat - Published: 2023-10-16 14:23 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: Red Hat Data Grid 8.4.5 security update
Severity
Important
Notes
Topic: An update for Red Hat Data Grid 8 is now available.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. It increases application response times and allows for dramatically improving performance while providing availability, reliability, and elastic scale.
Data Grid 8.4.5 replaces Data Grid 8.4.4 and includes bug fixes and enhancements. Find out more about Data Grid 8.4.5 in the Release Notes[3].
Security Fix(es):
* netty-codec-http2: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat Data Grid 8.4.5
Red Hat / Red Hat JBoss Data Grid
|
cpe:/a:redhat:jboss_data_grid:8
|
— |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for Red Hat Data Grid 8 is now available.\n \nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Data Grid is an in-memory, distributed, NoSQL datastore solution. It increases application response times and allows for dramatically improving performance while providing availability, reliability, and elastic scale.\n \nData Grid 8.4.5 replaces Data Grid 8.4.4 and includes bug fixes and enhancements. Find out more about Data Grid 8.4.5 in the Release Notes[3].\n\nSecurity Fix(es):\n\n* netty-codec-http2: HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5716",
"url": "https://access.redhat.com/errata/RHSA-2023:5716"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/softwareDetail.html?softwareId=70381\u0026product=data.grid\u0026version=8.4\u0026downloadType=patches",
"url": "https://access.redhat.com/jbossnetwork/restricted/softwareDetail.html?softwareId=70381\u0026product=data.grid\u0026version=8.4\u0026downloadType=patches"
},
{
"category": "external",
"summary": "https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.4/html-single/red_hat_data_grid_8.4_release_notes/index",
"url": "https://access.redhat.com/documentation/en-us/red_hat_data_grid/8.4/html-single/red_hat_data_grid_8.4_release_notes/index"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5716.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Data Grid 8.4.5 security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:31+00:00",
"generator": {
"date": "2026-06-02T15:03:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5716",
"initial_release_date": "2023-10-16T14:23:26+00:00",
"revision_history": [
{
"date": "2023-10-16T14:23:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T14:23:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Data Grid 8.4.5",
"product": {
"name": "Red Hat Data Grid 8.4.5",
"product_id": "Red Hat Data Grid 8.4.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_data_grid:8"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Data Grid"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Data Grid 8.4.5"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T14:23:26+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"Red Hat Data Grid 8.4.5"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5716"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"Red Hat Data Grid 8.4.5"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Data Grid 8.4.5"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5717
Vulnerability from csaf_redhat - Published: 2023-10-18 15:07 - Updated: 2026-06-08 21:59Summary
Red Hat Security Advisory: OpenShift Container Platform 4.11.52 packages and security update
Severity
Important
Notes
Topic: Red Hat OpenShift Container Platform release 4.11.52 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.11.
Red Hat Product Security has rated this update as having a security impact of [impact]. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.52. See the following advisory for the container images for this release:
https://access.redhat.com/errata/RHSA-2023:5697
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
5 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64 | — |
Vendor Fix
fix
Workaround
|
Known not affected
138 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x | — |
Workaround
|
|
| Unresolved product id: 8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 | — |
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.11.52 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.11.\n\nRed Hat Product Security has rated this update as having a security impact of [impact]. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container Platform 4.11.52. See the following advisory for the container images for this release:\n\nhttps://access.redhat.com/errata/RHSA-2023:5697\n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487) (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.11 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.openshift.com/container-platform/4.11/updating/updating-cluster-cli.html",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5717",
"url": "https://access.redhat.com/errata/RHSA-2023:5717"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5717.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.11.52 packages and security update",
"tracking": {
"current_release_date": "2026-06-08T21:59:03+00:00",
"generator": {
"date": "2026-06-08T21:59:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2023:5717",
"initial_release_date": "2023-10-18T15:07:12+00:00",
"revision_history": [
{
"date": "2023-10-18T15:07:12+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-18T15:07:12+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T21:59:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.11",
"product": {
"name": "Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.11::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-aarch64@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_id": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-372.76.1.el8_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"product": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"product_id": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202310140343.p0.gec2a592.assembly.stream.el8?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"product": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"product_id": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-ppc64le@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_id": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-372.76.1.el8_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"product": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"product_id": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202310140343.p0.gec2a592.assembly.stream.el8?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"product": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"product_id": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-ipaclones-internal@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-libs-devel@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_id": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-372.76.1.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-core@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-core@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-devel@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-kvm@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-extra@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-modules-internal@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-devel@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-kvm@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-extra@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-modules-internal@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-selftests-internal@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debug-debuginfo@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_id": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt-debuginfo-common-x86_64@4.18.0-372.76.1.rt7.235.el8_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"product": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"product_id": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202310140343.p0.gec2a592.assembly.stream.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product_id": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product": {
"name": "openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product_id": "openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients-redistributable@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-core@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-core@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-devel@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-extra@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-modules-internal@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-extra@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-modules-internal@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-selftests-internal@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-core@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-devel@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-extra@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-modules-internal@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "perf-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "perf-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-s390x@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-zfcpdump-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_id": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-372.76.1.el8_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"product": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"product_id": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-hyperkube@4.11.0-202310140343.p0.gec2a592.assembly.stream.el8?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"product": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"product_id": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-0:4.18.0-372.76.1.el8_6.src",
"product": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.src",
"product_id": "kernel-0:4.18.0-372.76.1.el8_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel@4.18.0-372.76.1.el8_6?arch=src"
}
}
},
{
"category": "product_version",
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"product": {
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"product_id": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-rt@4.18.0-372.76.1.rt7.235.el8_6?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"product": {
"name": "openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"product_id": "openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift@4.11.0-202310140343.p0.gec2a592.assembly.stream.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"product": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"product_id": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openshift-clients@4.11.0-202310131344.p0.g3470d04.assembly.stream.el8?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"product": {
"name": "kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"product_id": "kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-doc@4.18.0-372.76.1.el8_6?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.src as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src"
},
"product_reference": "kernel-0:4.18.0-372.76.1.el8_6.src",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-core-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-doc-0:4.18.0-372.76.1.el8_6.noarch as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch"
},
"product_reference": "kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src"
},
"product_reference": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64"
},
"product_reference": "kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src"
},
"product_reference": "openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64"
},
"product_reference": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le"
},
"product_reference": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x"
},
"product_reference": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src"
},
"product_reference": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64"
},
"product_reference": "openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64"
},
"product_reference": "openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64"
},
"product_reference": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le"
},
"product_reference": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x"
},
"product_reference": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64"
},
"product_reference": "openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "perf-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "perf-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "perf-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"relates_to_product_reference": "8Base-RHOSE-4.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64 as a component of Red Hat OpenShift Container Platform 4.11",
"product_id": "8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"relates_to_product_reference": "8Base-RHOSE-4.11"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64"
],
"known_not_affected": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-18T15:07:12+00:00",
"details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
"product_ids": [
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5717"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64"
],
"known_not_affected": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-18T15:07:12+00:00",
"details": "For OpenShift Container Platform 4.11 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.openshift.com/container-platform/4.11/release_notes/ocp-4-11-release-notes.html",
"product_ids": [
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5717"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:bpftool-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.src",
"8Base-RHOSE-4.11:kernel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-core-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debug-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-aarch64-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-debuginfo-common-ppc64le-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-debuginfo-common-s390x-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-debuginfo-common-x86_64-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-doc-0:4.18.0-372.76.1.el8_6.noarch",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-ipaclones-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-extra-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-modules-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.src",
"8Base-RHOSE-4.11:kernel-rt-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-core-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debug-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-debuginfo-common-x86_64-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-devel-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-kvm-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-extra-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-modules-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-rt-selftests-internal-0:4.18.0-372.76.1.rt7.235.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-selftests-internal-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-tools-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:kernel-tools-libs-devel-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:kernel-zfcpdump-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-core-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-devel-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-extra-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:kernel-zfcpdump-modules-internal-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:openshift-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.src",
"8Base-RHOSE-4.11:openshift-clients-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-clients-redistributable-0:4.11.0-202310131344.p0.g3470d04.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.aarch64",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.ppc64le",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.s390x",
"8Base-RHOSE-4.11:openshift-hyperkube-0:4.11.0-202310140343.p0.gec2a592.assembly.stream.el8.x86_64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-0:4.18.0-372.76.1.el8_6.x86_64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.aarch64",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.ppc64le",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.s390x",
"8Base-RHOSE-4.11:python3-perf-debuginfo-0:4.18.0-372.76.1.el8_6.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5719
Vulnerability from csaf_redhat - Published: 2023-10-16 11:30 - Updated: 2026-06-08 21:59Summary
Red Hat Security Advisory: go-toolset-1.19 and go-toolset-1.19-golang security update
Severity
Important
Notes
Topic: An update for go-toolset-1.19 and go-toolset-1.19-golang is now available for Red Hat Developer Tools.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
62 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
22 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for go-toolset-1.19 and go-toolset-1.19-golang is now available for Red Hat Developer Tools.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. \n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5719",
"url": "https://access.redhat.com/errata/RHSA-2023:5719"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5719.json"
}
],
"title": "Red Hat Security Advisory: go-toolset-1.19 and go-toolset-1.19-golang security update",
"tracking": {
"current_release_date": "2026-06-08T21:59:04+00:00",
"generator": {
"date": "2026-06-08T21:59:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2023:5719",
"initial_release_date": "2023-10-16T11:30:56+00:00",
"revision_history": [
{
"date": "2023-10-16T11:30:56+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T11:30:56+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T21:59:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product": {
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devtools:2023::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product": {
"name": "Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:devtools:2023::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Developer Tools"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.src",
"product": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.src",
"product_id": "go-toolset-1.19-0:1.19.13-1.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19@1.19.13-1.el7_9?arch=src"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"product": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"product_id": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang@1.19.13-2.el7_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"product_id": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19@1.19.13-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"product_id": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-build@1.19.13-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"product_id": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-runtime@1.19.13-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"product_id": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-scldevel@1.19.13-1.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang@1.19.13-2.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-bin@1.19.13-2.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-misc@1.19.13-2.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-race@1.19.13-2.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-src@1.19.13-2.el7_9?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"product": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"product_id": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-tests@1.19.13-2.el7_9?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"product_id": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19@1.19.13-1.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"product_id": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-build@1.19.13-1.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"product_id": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-runtime@1.19.13-1.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"product_id": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-scldevel@1.19.13-1.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"product_id": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang@1.19.13-2.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"product_id": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-bin@1.19.13-2.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"product_id": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-misc@1.19.13-2.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"product_id": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-src@1.19.13-2.el7_9?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"product": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"product_id": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-tests@1.19.13-2.el7_9?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"product_id": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19@1.19.13-1.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"product_id": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-build@1.19.13-1.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"product_id": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-runtime@1.19.13-1.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"product_id": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-scldevel@1.19.13-1.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"product_id": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang@1.19.13-2.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"product_id": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-bin@1.19.13-2.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"product_id": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-misc@1.19.13-2.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"product_id": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-src@1.19.13-2.el7_9?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"product": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"product_id": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-tests@1.19.13-2.el7_9?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"product": {
"name": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"product_id": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset-1.19-golang-docs@1.19.13-2.el7_9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.src",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch"
},
"product_reference": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Server (v. 7)",
"product_id": "7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Server-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.src",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch"
},
"product_reference": "go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64 as a component of Red Hat Developer Tools for Red Hat Enterprise Linux Workstation (v. 7)",
"product_id": "7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
},
"product_reference": "go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"relates_to_product_reference": "7Workstation-DevTools-2023.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T11:30:56+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5719"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T11:30:56+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5719"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Server-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-build-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.src",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-bin-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-docs-0:1.19.13-2.el7_9.noarch",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-misc-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-race-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-src-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-golang-tests-0:1.19.13-2.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-runtime-0:1.19.13-1.el7_9.x86_64",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.ppc64le",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.s390x",
"7Workstation-DevTools-2023.2:go-toolset-1.19-scldevel-0:1.19.13-1.el7_9.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5720
Vulnerability from csaf_redhat - Published: 2023-10-16 12:22 - Updated: 2026-06-02 15:03Summary
Red Hat Security Advisory: rh-nginx120-nginx security update
Severity
Moderate
Notes
Topic: An update for rh-nginx120-nginx is now available for Red Hat Software Collections.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage.
Security Fix(es):
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Moderate
References
15 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for rh-nginx120-nginx is now available for Red Hat Software Collections.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "nginx is a web and proxy server supporting HTTP and other protocols, with a focus on high concurrency, performance, and low memory usage. \n\nSecurity Fix(es):\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5720",
"url": "https://access.redhat.com/errata/RHSA-2023:5720"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5720.json"
}
],
"title": "Red Hat Security Advisory: rh-nginx120-nginx security update",
"tracking": {
"current_release_date": "2026-06-02T15:03:29+00:00",
"generator": {
"date": "2026-06-02T15:03:29+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.1"
}
},
"id": "RHSA-2023:5720",
"initial_release_date": "2023-10-16T12:22:59+00:00",
"revision_history": [
{
"date": "2023-10-16T12:22:59+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T12:22:59+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-02T15:03:29+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Software Collections for RHEL Workstation(v. 7)",
"product": {
"name": "Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Software Collections for RHEL(v. 7)",
"product": {
"name": "Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_software_collections:3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Software Collections"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"product": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"product_id": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx@1.20.1-1.el7.1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-image-filter@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-perl@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-xslt-filter@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-mail@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-stream@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"product": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"product_id": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-debuginfo@1.20.1-1.el7.1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-image-filter@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-perl@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-xslt-filter@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-mail@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-stream@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"product": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"product_id": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-debuginfo@1.20.1-1.el7.1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-image-filter@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-perl@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-http-xslt-filter@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-mail@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-mod-stream@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"product": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"product_id": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/rh-nginx120-nginx-debuginfo@1.20.1-1.el7.1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL Workstation(v. 7)",
"product_id": "7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Server-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64 as a component of Red Hat Software Collections for RHEL(v. 7)",
"product_id": "7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
},
"product_reference": "rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"relates_to_product_reference": "7Workstation-RHSCL-3.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T12:22:59+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5720"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Server-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Server-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.src",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-debuginfo-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-image-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-perl-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-http-xslt-filter-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-mail-1:1.20.1-1.el7.1.x86_64",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.ppc64le",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.s390x",
"7Workstation-RHSCL-3.8:rh-nginx120-nginx-mod-stream-1:1.20.1-1.el7.1.x86_64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Moderate"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
RHSA-2023:5721
Vulnerability from csaf_redhat - Published: 2023-10-16 12:38 - Updated: 2026-06-08 21:59Summary
Red Hat Security Advisory: go-toolset:rhel8 security update
Severity
Important
Notes
Topic: An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang.
Security Fix(es):
* golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] (CVE-2023-39325)
* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.
6.5 (Medium)
Affected products
Fixed
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.
5.3 (Medium)
Affected products
Fixed
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
|
Threats
Impact
Moderate
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.
7.5 (High)
Affected products
Fixed
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as 'Important' as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit. CVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages. Security Bulletin https://access.redhat.com/security/vulnerabilities/RHSB-2023-003
7.5 (High)
Affected products
Fixed
23 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8 | — |
Vendor Fix
fix
Workaround
|
Threats
Exploit Status
CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog
Impact
Important
References
35 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the go-toolset:rhel8 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Go Toolset provides the Go programming language tools and libraries. Go is alternatively known as golang. \n\nSecurity Fix(es):\n\n* golang: net/http, x/net/http2: rapid stream resets can cause excessive work [CVE-2023-44487] (CVE-2023-39325)\n\n* HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack) (CVE-2023-44487)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5721",
"url": "https://access.redhat.com/errata/RHSA-2023:5721"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5721.json"
}
],
"title": "Red Hat Security Advisory: go-toolset:rhel8 security update",
"tracking": {
"current_release_date": "2026-06-08T21:59:06+00:00",
"generator": {
"date": "2026-06-08T21:59:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.2"
}
},
"id": "RHSA-2023:5721",
"initial_release_date": "2023-10-16T12:38:36+00:00",
"revision_history": [
{
"date": "2023-10-16T12:38:36+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-10-16T12:38:36+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-06-08T21:59:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64 (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.19.13-1.module%2Bel8.8.0%2B20380%2B7171fefb?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"product": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64 (go-toolset:rhel8)",
"product_id": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64 (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=aarch64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.19.13-1.module%2Bel8.8.0%2B20380%2B7171fefb?arch=src\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"product": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src (go-toolset:rhel8)",
"product_id": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=src\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"product": {
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src (go-toolset:rhel8)",
"product_id": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.9.1-1.module%2Bel8.8.0%2B16778%2B5fbb74f5?arch=src\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product": {
"name": "golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8)",
"product_id": "golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-docs@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=noarch\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product": {
"name": "golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8)",
"product_id": "golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-misc@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=noarch\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product": {
"name": "golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8)",
"product_id": "golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-src@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=noarch\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product": {
"name": "golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8)",
"product_id": "golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-tests@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=noarch\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.19.13-1.module%2Bel8.8.0%2B20380%2B7171fefb?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"product": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le (go-toolset:rhel8)",
"product_id": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=ppc64le\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.19.13-1.module%2Bel8.8.0%2B20380%2B7171fefb?arch=s390x\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"product": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x (go-toolset:rhel8)",
"product_id": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=s390x\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=s390x\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8)",
"product_id": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve@1.9.1-1.module%2Bel8.8.0%2B16778%2B5fbb74f5?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8)",
"product_id": "delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debuginfo@1.9.1-1.module%2Bel8.8.0%2B16778%2B5fbb74f5?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product": {
"name": "delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8)",
"product_id": "delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/delve-debugsource@1.9.1-1.module%2Bel8.8.0%2B16778%2B5fbb74f5?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"product": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64 (go-toolset:rhel8)",
"product_id": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/go-toolset@1.19.13-1.module%2Bel8.8.0%2B20380%2B7171fefb?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8)",
"product_id": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8)",
"product_id": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-bin@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
},
{
"category": "product_version",
"name": "golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product": {
"name": "golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8)",
"product_id": "golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/golang-race@1.19.13-1.module%2Bel8.8.0%2B20373%2Bd9cd605c?arch=x86_64\u0026rpmmod=go-toolset:rhel8:8080020231013004859:6b4b45d8"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8"
},
"product_reference": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8"
},
"product_reference": "delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8"
},
"product_reference": "go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8"
},
"product_reference": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8"
},
"product_reference": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8"
},
"product_reference": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8"
},
"product_reference": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8"
},
"product_reference": "golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8"
},
"product_reference": "golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
},
"product_reference": "golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
},
"product_reference": "golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64 (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8"
},
"product_reference": "golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
},
"product_reference": "golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch (go-toolset:rhel8) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
},
"product_reference": "golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"relates_to_product_reference": "AppStream-8.8.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-29406",
"cwe": {
"id": "CWE-113",
"name": "Improper Neutralization of CRLF Sequences in HTTP Headers (\u0027HTTP Request/Response Splitting\u0027)"
},
"discovery_date": "2023-07-12T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2222167"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang, where it is vulnerable to HTTP header injection caused by improper content validation of the Host header by the HTTP/1 client. A remote attacker can inject arbitrary HTTP headers by persuading a victim to visit a specially crafted Web page. This flaw allows the attacker to conduct various attacks against the vulnerable system, including Cross-site scripting, cache poisoning, or session hijacking.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http: insufficient sanitization of Host header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29406"
},
{
"category": "external",
"summary": "RHBZ#2222167",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222167"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29406",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29406"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29406"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0",
"url": "https://groups.google.com/g/golang-announce/c/2q13H6LEEx0"
}
],
"release_date": "2023-07-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T12:38:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5721"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http: insufficient sanitization of Host header"
},
{
"cve": "CVE-2023-29409",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-08-03T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2228743"
}
],
"notes": [
{
"category": "description",
"text": "A denial of service vulnerability was found in the Golang Go package caused by an uncontrolled resource consumption flaw. By persuading a victim to use a specially crafted certificate with large RSA keys, a remote attacker can cause a client/server to expend significant CPU time verifying signatures, resulting in a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-29409"
},
{
"category": "external",
"summary": "RHBZ#2228743",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2228743"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-29409",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29409"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-29409"
},
{
"category": "external",
"summary": "https://go.dev/cl/515257",
"url": "https://go.dev/cl/515257"
},
{
"category": "external",
"summary": "https://go.dev/issue/61460",
"url": "https://go.dev/issue/61460"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ",
"url": "https://groups.google.com/g/golang-announce/c/X0b6CsSAaYI/m/Efv5DbZ9AwAJ"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-1987",
"url": "https://pkg.go.dev/vuln/GO-2023-1987"
}
],
"release_date": "2023-08-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T12:38:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5721"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/tls: slow verification of certificate chains containing large RSA keys"
},
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T12:38:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5721"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2023-44487",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-09T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2242803"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "RHBZ#2242803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
},
{
"category": "external",
"summary": "RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://github.com/dotnet/announcements/issues/277",
"url": "https://github.com/dotnet/announcements/issues/277"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
},
{
"category": "external",
"summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
"url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-10-16T12:38:36+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5721"
},
{
"category": "workaround",
"details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debuginfo-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:delve-debugsource-0:1.9.1-1.module+el8.8.0+16778+5fbb74f5.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:go-toolset-0:1.19.13-1.module+el8.8.0+20380+7171fefb.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.src::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.aarch64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.ppc64le::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.s390x::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-bin-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-docs-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-misc-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-race-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.x86_64::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-src-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8",
"AppStream-8.8.0.Z.MAIN.EUS:golang-tests-0:1.19.13-1.module+el8.8.0+20373+d9cd605c.noarch::go-toolset:rhel8"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2023-10-10T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…